# PlatPhorm Monitor Canonical operations control plane for PlatPhormNews infrastructure, deployments, domains, DNS, firewall/security, sandbox, AI/model operations, trace/observability, API/MCP health, protected actions, rate limits, audit events, and cross-site reliability. Base URL: https://monitor.platphormnews.com Version: 0.4.0 Updated: 2026-06-02T18:09:16.478Z ## Inventory - Projects: 20 (live) - Deployments: 20 (live) - Domains: 20 (live) - Incidents persistence: available ## Public Endpoints - GET /api/v1/overview - GET /api/v1/dashboard - GET /api/v1/settings/status - GET /api/v1/projects - GET /api/v1/deployments - GET /api/v1/domains - GET /api/v1/analytics - GET /api/v1/firewall - GET /api/v1/notifications - GET /api/v1/system-health - GET /api/v1/incidents - GET /api/v1/status - GET /api/v1/database/status - GET /api/v1/database/models - GET /api/v1/database/snapshots - GET /api/v1/ja4db/status - GET /api/v1/ja4db/summary - GET /api/v1/sync-runs - GET /api/v1/protected-actions - GET /api/v1/audit - GET /api/v1/rate-limits - GET /api/v1/sandbox/status - GET /api/v1/sandbox/sandboxes - GET /api/v1/sandbox/commands - GET /api/v1/sandbox/snapshots - GET /api/v1/sandbox/errors - GET /api/v1/sandbox-health - GET /api/v1/sandboxes - GET /api/v1/sandbox-commands - GET /api/v1/sandbox-snapshots - GET /api/v1/ai/status - GET /api/v1/ai/providers - GET /api/v1/ai/model-runs - GET /api/v1/ai/errors - GET /api/v1/ai/degraded - GET /api/v1/observability/status - GET /api/v1/observability/traces - GET /api/v1/observability/failures - GET /api/v1/observability/services - GET /api/v1/observability/late-spans - GET /api/v1/observability/orphan-spans - GET /api/v1/security/firewall - GET /api/v1/security/attacks - GET /api/v1/security/bypass - GET /api/v1/security/redaction - GET /api/v1/security/agent-policy - GET /api/v1/network/status - GET /api/v1/network/sites - GET /api/v1/network/integrations - GET /api/v1/network/compliance - GET /api/v1/network/discovery - GET /api/v1/cache/status - GET /api/v1/rate-limit/status - GET /api/v1/network/route-compliance - GET /api/v1/network/discovery-compliance - GET /api/v1/network/uptime ## Operations Surfaces - Vercel provider reads use live provider responses, persisted snapshots, stale cache, or honest degraded states. - Sandbox monitoring checks sandbox.platphormnews.com and reports unavailable provider counts instead of fake sessions. - AI/model monitoring reports configured/no-provider/degraded states without exposing keys, prompts, or outputs. - Trace/observability monitoring checks trace.platphormnews.com and labels detailed span counts unavailable until scoped integration exists. - Firewall/security monitoring keeps mutations protected and never exposes raw x-vercel-ja4-digest values. ## MCP - Standard endpoint: /api/mcp - Legacy compatibility endpoint: /mcp - Tools: 60 - Resources: 41 - Prompts: 20 ## Auth - Protected platform actions require PLATPHORM_API_KEY. - Accepted headers: Authorization Bearer or X-PlatPhorm-API-Key. - The Vercel provider credential is upstream-only and is never public platform auth. ## Public/Protected Boundary Web infrastructure monitoring, public-safe uptime summaries, browser-based Monitor operations, Vercel metadata capture, trusted-domain discovery, standard route compliance, trace-linked health checks, and MCP monitoring discovery are intentionally supported for public read-only operational visibility. Mutating, administrative, sync, incident management, deployment inspection, test-triggering, reporting, and write actions require PLATPHORM_API_KEY. ## Standard Routes - /api/health - /api/v1/health - /api/docs - /openapi.yaml - /openapi.json - /llms.txt - /llms-full.txt - /llms-index.json - /robots.txt - /sitemap.xml - /sitemap-main.xml - /sitemap-index.xml - /rss.xml - /feed.xml - /manifest.webmanifest - /.well-known/mcp.json - /.well-known/agents.json - /.well-known/agent-policy.json - /.well-known/ai-policy.json - /.well-known/ai-plugin.json - /.well-known/security.txt - /.well-known/trust.json - /api/mcp ## MCP Tools - list_deployments: List recent public-safe Vercel deployments. Optionally filter by project ID or deployment target. - get_deployments: List recent Vercel deployments. Optionally filter by project ID or deployment target. - list_projects: List public-safe monitored Vercel projects. - get_projects: List all monitored Vercel projects. - list_domains: List public-safe domains configured across monitored Vercel projects. - get_domains: List all domains configured across monitored Vercel projects. - get_system_health: Read Monitor system health including Vercel API connectivity, persistence, cache, rate limits, request dedup, and trace state. - get_health: Check overall system health including Vercel API connectivity, database status, and rate limits. - get_analytics: Retrieve analytics data for monitored deployments. - get_firewall_status: List public-safe firewall status for a monitored project. - get_firewall_rules: Compatibility alias for get_firewall_status. - get_snapshots: Retrieve recent infrastructure snapshots. - get_anomalies: List detected anomalies across monitored infrastructure. - list_notifications: List recent public-safe notifications and alerts. - get_notifications: Compatibility alias for list_notifications. - list_incidents: List Monitor incidents and honest persistence state. - run_route_check: Run a live standard route compliance check against Monitor or another trusted PlatPhormNews URL. - run_health_check: Run a live uptime health check against Monitor or another trusted PlatPhormNews URL. - get_route_compliance: Read standard route compliance for Monitor or another trusted PlatPhormNews URL. - get_discovery_compliance: Read Monitor discovery file compliance. - get_uptime_summary: Read latest live uptime summary. - get_cache_status: Read cache and request dedup status. - get_rate_limit_status: Read token bucket, Vercel API rate-limit, cache, and request dedup status. - get_overview: Read the public-safe Monitor overview. - get_dashboard: Read the database-backed dashboard summary. - get_monitor_info: Read Monitor identity, purpose, version, and public route inventory. - get_info: Compatibility alias for get_monitor_info. - get_settings_status: Read server-side settings status without exposing raw values. - list_dns_records: List DNS records for a domain when a domain argument is provided. - list_aliases: List Vercel aliases. - list_access_groups: List Vercel access groups or degraded status. - list_team_members: List team members or degraded status with public-safe redaction. - list_project_members: List project members for a project. - list_webhooks: List webhooks with redacted URLs. - list_edge_configs: List Edge Config metadata. - list_feature_flags: List feature flag metadata. - list_checks: List Vercel checks for a project. - list_drains: List Vercel log drains. - list_certs: List certificate metadata. - list_sandboxes: List sandbox metadata or honest degraded state. - get_sandbox_status: Read sandbox service/provider status. - get_ai_status: Read AI/model operations provider status. - list_ai_providers: List configured/degraded/no-provider AI provider states without secrets. - get_observability_status: Read trace/observability integration status. - list_trace_failures: Read public-safe trace failure summary. - get_network_status: Read root graph and network monitor status. - get_integration_status: Read public-safe integration matrix. - get_security_summary: Read firewall/security/redaction summary. - get_firewall_summary: Read firewall provider summary. - get_public_access_summary: Read public/protected boundary and trust policy summary. - get_database_status: Read canonical database status. - get_ja4db_status: Read JA4DB status without exposing tokens or raw digests. - get_sync_runs: Read sync run history. - get_audit_summary: Read public-safe audit event summary. - get_agent_policy: Read the public agent policy. - get_robots_policy: Read robots.txt policy. - get_ai_policy: Read AI policy. - get_trust_policy: Read trust policy. - get_discovery_manifest: Read llms-index discovery manifest. - sync_vercel_data: Protected dry-run Vercel sync request. ## MCP Resources - monitor://manifest: Legacy alias for monitor://overview. - monitor://info: Legacy service metadata resource. - monitor://overview: Public-safe Monitor overview, service metadata, and endpoint inventory. - monitor://dashboard: Database-backed Monitor dashboard summary. - monitor://projects: Monitored Vercel project summary resource. - monitor://deployments: Deployment summary resource. - monitor://domains: Domain inventory summary resource. - monitor://dns: DNS records resource. - monitor://aliases: Alias inventory summary resource. - monitor://security: Security status resource. - monitor://feature-flags: Feature flag metadata resource. - monitor://edge-config: Edge Config metadata resource. - monitor://webhooks: Webhook metadata resource. - monitor://analytics: Analytics availability and degraded-state resource. - monitor://firewall: Firewall status resource. - monitor://notifications: Notification event resource. - monitor://system-health: System health, cache, rate limit, dedup, and persistence resource. - monitor://settings-status: Server-side config truth model without raw env values. - monitor://sandboxes: Sandbox provider and service health status. - monitor://ai: AI/model operations provider status. - monitor://observability: Trace/observability integration status. - monitor://network: Network monitor status and integration matrix. - monitor://database-status: Canonical database status resource. - monitor://ja4db-status: JA4DB status resource. - monitor://rate-limits: Rate-limit status resource. - monitor://audit: Public-safe audit resource. - monitor://protected-actions: Protected action queue resource. - monitor://incidents: Incident summary resource. - monitor://network/sites: Trusted PlatPhormNews site discovery resource. - monitor://network/route-compliance: Standard route compliance resource. - monitor://network/discovery-compliance: Discovery file compliance resource. - monitor://openapi: OpenAPI YAML resource. - monitor://llms: LLM discovery context resource. - monitor://trust-policy: PlatPhorm Monitor trust policy resource. - agent-policy://summary: Agent policy summary. - agent-policy://platforms: Supported agent platform policy categories. - agent-policy://robots: Robots policy summary. - agent-policy://ai-policy: AI policy summary. - agent-policy://trust-policy: Trust policy alias. - https://monitor.platphormnews.com/docs: Human-readable documentation page for PlatPhorm Monitor. - https://monitor.platphormnews.com/sitemap.xml: XML sitemap of available pages. ## MCP Prompts - summarize_system_health: Summarize Monitor system health, provider connectivity, cache, rate-limit, and persistence state. - investigate_deployment_failure: Guide an operator through a deployment failure investigation using deployment, domain, incident, and trace links. - investigate_domain_issue: Guide an operator through DNS/domain verification and routing issues. - generate_incident_report: Create a public-safe incident report from Monitor incidents, affected sites, and trace links. - generate_uptime_report: Summarize live uptime and route compliance checks across trusted PlatPhormNews sites. - generate_route_compliance_report: Summarize standard route compliance and missing discovery surfaces. - generate_vercel_status_summary: Summarize public-safe Vercel provider connectivity, deployments, domains, and degraded states. - create_monitoring_remediation: Draft a remediation plan for Monitor findings without executing protected actions. - human_machine_monitor_handoff: Prepare a human-to-agent handoff brief for operational monitoring work. - summarize_vercel_health: Summarize Vercel API, database, JA4DB, rate-limit, project, deployment, and domain health. - explain_deployment_failure: Explain a deployment failure using only observed provider and Monitor state. - create_domain_fix_plan: Create a DNS/domain fix plan without mutating provider state. - create_dns_change_plan: Create a DNS change plan with risk labels and confirmation requirements. - create_firewall_change_plan: Create a firewall change plan with protected-action requirements. - create_env_var_change_plan: Create an environment variable metadata change plan without exposing values. - summarize_project_status: Summarize project health, deployments, domains, and degraded state. - create_monitoring_report: Create a public-safe monitoring report from real Monitor state. - explain_protected_action: Explain the risk, target, and confirmation requirements for a protected action. - generate_incident_summary: Generate a public-safe incident summary from recorded incidents and traces. - explain_agent_policy: Explain Monitor's public-safe agent policy and protected-action boundary.