New MCP Server Capabilities

maximelb · June 7, 2025, 3:47pm

Quick update to our server at mcp.limacharlie.io.

New tools:
- generate_dr_rule_detection
- generate_dr_rule_respond
- generate_lcql_query
In all the above, the generation has also been updated to take into account the Organization’s own data.

More on the enhanced generation, the new process:

AI determines the platform that the query/rule relates to based on existing platforms in LC.
Based on 1, we fetch all the event_type that the Organization has seen, and another AI matches which event types are relevant to the request.
Based on 2, we fetch all the schemas of the event types as seen by the Organization.
We feed the data from 1-2-3 into the bigger AI along with the query and the relevant LC knowledge.
We take the generated query/rule and feed it to Replay in LC to validate the structure of the query/rule.
If 5 returns an error, we feed back the error at step 4 and repeat up to 5 times to get a valid, relevant rule.

The web app AI features do not yet implement this new generation process but we’re working on it.

Topic		Replies	Views
AI Updates General ai	0	31	April 26, 2025
New release: better process tree, AI powered D&R rule co-writer, and more Release Notes	0	21	April 11, 2025
LimaCharlie MCP Feature Requests ai	17	134	May 10, 2025
AI Agent Engine Platform Updates	0	34	March 30, 2025
New Release: Web App 4.4.0, AI Powered community rules Release Notes	0	20	June 17, 2025