Implementation guide
MCP observability without storing API payloads
Operational logs record capability names, outcomes, status codes, timing, sizes, client information when available, and safe errors. They do not contain upstream authentication headers, credentials, or request and response bodies.
Operational evidence
Use operational logs to locate a request, then correlate it with the API's own logs.
- Filter by time, capability, source, and status
- Compare response time and status code
- Use data sizes to spot abnormal results
- Inspect full payloads only in appropriately protected upstream logs
Configuration evidence
Audit records explain how the served MCP configuration changed.
- Specification imports
- Tool, resource, and prompt edits
- Version publication
- Pause, resume, domain, and server-setting changes
For complete product instructions, read the 0mcp documentation. Protocol reference: Model Context Protocol specification.
Published and last reviewed: July 13, 2026