AWS 成本优化与运维监控技能 - 集成 MCP 服务器实现成本估算、分析、监控与安全审计

aws-cost-operations by zxkane/aws-skills

180 周安装量

216 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/zxkane/aws-skills --skill aws-cost-operations

云服务开发运维监控

🇨🇳中文介绍

包含钩子

此技能使用 Claude 钩子，可自动响应事件执行代码。安装前请仔细审查。

AWS 成本与运维

此技能通过集成的 MCP 服务器，为 AWS 成本优化、监控、可观测性和卓越运维提供全面指导。

AWS 文档要求

在回答问题前，务必使用 MCP 工具（mcp__aws-mcp__* 或 mcp__*awsdocs*__*）验证 AWS 事实。aws-mcp-setup 依赖项会自动加载——如果 MCP 工具不可用，请引导用户完成该技能的设置流程。

集成的 MCP 服务器

此插件提供 3 个 MCP 服务器：

捆绑的服务器

1. AWS 定价 MCP 服务器 (`pricing`)

用途：部署前的成本估算和优化

部署资源前估算成本
跨区域比较定价
计算总拥有成本 (TCO)
评估不同服务选项的成本效益

2. AWS 成本浏览器 MCP 服务器 (`costexp`)

用途：详细的成本分析和报告

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

何时使用此技能

在以下情况下使用此技能：

优化 AWS 成本并减少支出
部署前估算成本
监控应用程序和基础设施性能
设置可观测性和告警
分析支出模式和趋势
调查运维问题
审计 AWS 活动和变更
评估安全态势
实施卓越运维

成本优化最佳实践

部署前成本估算

部署前务必估算成本：

使用 AWS 定价 MCP 估算资源成本
比较不同区域的定价
评估替代服务选项
计算预期的月度成本
规划扩展和增长

示例工作流：

"估算在 us-east-1 区域运行一个 Lambda 函数的月度成本，该函数有
100 万次调用，512MB 内存，3 秒执行时长"

成本分析与优化

定期成本审查：

使用 成本浏览器 MCP 分析支出趋势
识别成本异常和意外费用
按服务、区域和环境审查成本
比较实际成本与预算成本
生成成本优化建议

成本优化策略：

调整过度配置的资源规模
使用适当的存储类别 (S3, EBS)
为动态工作负载实施自动扩展
利用 Savings Plans 和预留实例
删除未使用的资源和快照
有效使用成本分配标签

跟踪支出与预算的对比：

使用 账单和成本管理 MCP 监控预算
为阈值突破设置预算告警
定期审查预算使用情况
根据趋势调整预算
实施成本控制和治理

监控与可观测性最佳实践

CloudWatch 指标与告警

实施全面监控：

使用 CloudWatch MCP 查询指标和日志
为关键指标设置告警：
- CPU 和内存利用率
- 错误率和延迟
- 队列深度和处理时间
- API 网关节流
- Lambda 错误和超时
创建 CloudWatch 仪表板进行可视化
使用日志洞察进行故障排除

示例告警场景：

Lambda 错误率 > 1%
EC2 CPU 利用率 > 80%
API Gateway 4xx/5xx 错误激增
DynamoDB 节流请求
ECS 任务失败

应用程序性能监控

监控应用程序健康状态：

使用 CloudWatch 应用信号 MCP 进行 APM
跟踪服务级别目标 (SLO)
监控应用程序依赖项
识别性能瓶颈
设置分布式追踪

容器和 Kubernetes 监控

针对容器化工作负载：

使用 AWS 托管 Prometheus MCP 获取指标
监控容器资源利用率
跟踪 Pod 和节点健康状态
为自定义指标创建 PromQL 查询
为容器异常设置告警

审计与安全最佳实践

CloudTrail 活动分析

审计 AWS 活动：

使用 CloudTrail MCP 分析 API 活动
跟踪谁对资源进行了更改
调查安全事件
监控可疑活动模式
审计策略合规性

常见审计场景：

"谁删除了这个 S3 存储桶？"
"显示过去 24 小时内所有 IAM 角色变更"
"列出所有失败的登录尝试"
"查找特定用户的所有操作"
"跟踪安全组的修改"

定期安全审查：

使用 完善架构安全评估 MCP
根据最佳实践评估安全态势
识别安全差距和漏洞
实施推荐的安全改进措施
记录安全合规性

安全评估领域：

身份和访问管理 (IAM)
检测控制和监控
基础设施保护
数据保护和加密
事件响应准备

有效使用 MCP 服务器

成本分析工作流

部署前：使用定价 MCP 估算成本
部署后：使用账单 MCP 跟踪实际支出
分析：使用成本浏览器 MCP 进行详细成本分析
优化：实施成本浏览器的建议

设置：配置 CloudWatch 指标和告警
监控：使用 CloudWatch MCP 跟踪关键指标
分析：使用应用信号获取 APM 洞察
故障排除：查询 CloudWatch 日志以解决问题

审计：使用 CloudTrail MCP 审查活动
评估：使用完善架构安全评估
修复：实施安全建议
监控：通过 CloudWatch 跟踪安全事件

MCP 使用最佳实践

成本意识：部署资源前检查定价
主动监控：为关键指标设置告警
定期审查：每周分析成本和性能
审计跟踪：审查 CloudTrail 日志以确保合规
安全第一：定期运行安全评估
持续优化：根据成本和性能建议采取行动

标记一切：使用一致的成本分配标签
月度审查：分析支出趋势和异常
合理调整规模：使资源与实际使用情况匹配
自动化：使用自动扩展和调度
监控预算：为成本超支设置告警

关键指标：对业务关键指标进行告警
减少噪音：微调阈值以减少误报
可操作的告警：确保告警有明确的修复步骤
仪表板可见性：为关键利益相关者创建仪表板
日志保留：平衡成本和合规需求

最小权限：授予最低必要权限
定期审计：审查 CloudTrail 日志中的异常
加密数据：使用静态和传输中加密
持续评估：频繁运行安全评估
事件响应：制定安全事件处理程序

有关详细的操作模式和最佳实践，请参阅综合参考文档：

文件：references/operations-patterns.md

此参考文档包括：

成本优化策略
监控和告警模式
可观测性最佳实践
安全和合规指南
故障排除工作流

CloudWatch 告警参考

文件：references/cloudwatch-alarms.md

常见告警配置，适用于：

Lambda 函数
EC2 实例
RDS 数据库
DynamoDB 表
API Gateway
ECS 服务
应用负载均衡器

🇺🇸English

Contains Hooks

This skill uses Claude hooks which can execute code automatically in response to events. Review carefully before installing.

AWS Cost & Operations

This skill provides comprehensive guidance for AWS cost optimization, monitoring, observability, and operational excellence with integrated MCP servers.

AWS Documentation Requirement

Always verify AWS facts using MCP tools (mcp__aws-mcp__* or mcp__*awsdocs*__*) before answering. The aws-mcp-setup dependency is auto-loaded — if MCP tools are unavailable, guide the user through that skill's setup flow.

Integrated MCP Servers

This plugin provides 3 MCP servers:

Bundled Servers

1. AWS Pricing MCP Server (`pricing`)

Purpose : Pre-deployment cost estimation and optimization

Estimate costs before deploying resources
Compare pricing across regions
Calculate Total Cost of Ownership (TCO)
Evaluate different service options for cost efficiency

2. AWS Cost Explorer MCP Server (`costexp`)

Purpose : Detailed cost analysis and reporting

Analyze historical spending patterns
Identify cost anomalies and trends
Forecast future costs
Analyze cost by service, region, or tag

3. Amazon CloudWatch MCP Server (`cw`)

Purpose : Metrics, alarms, and logs analysis

Query CloudWatch metrics and logs
Create and manage CloudWatch alarms
Troubleshoot operational issues
Monitor resource utilization

Note : The following servers are available separately via the Full AWS MCP Server (see aws-mcp-setup skill) and are not bundled with this plugin:

AWS Billing and Cost Management MCP — Real-time billing details

CloudWatch Application Signals MCP — APM and SLOs

AWS Managed Prometheus MCP — PromQL queries for containers

AWS CloudTrail MCP — API activity audit

AWS Well-Architected Security Assessment MCP — Security posture assessment

When to Use This Skill

Use this skill when:

Optimizing AWS costs and reducing spending
Estimating costs before deployment
Monitoring application and infrastructure performance
Setting up observability and alerting
Analyzing spending patterns and trends
Investigating operational issues
Auditing AWS activity and changes
Assessing security posture
Implementing operational excellence

Cost Optimization Best Practices

Pre-Deployment Cost Estimation

Always estimate costs before deploying :

Use AWS Pricing MCP to estimate resource costs
Compare pricing across different regions
Evaluate alternative service options
Calculate expected monthly costs
Plan for scaling and growth

Example workflow :

"Estimate the monthly cost of running a Lambda function with
1 million invocations, 512MB memory, 3-second duration in us-east-1"

Cost Analysis and Optimization

Regular cost reviews :

Use Cost Explorer MCP to analyze spending trends
Identify cost anomalies and unexpected charges
Review costs by service, region, and environment
Compare actual vs. budgeted costs
Generate cost optimization recommendations

Cost optimization strategies :

Right-size over-provisioned resources
Use appropriate storage classes (S3, EBS)
Implement auto-scaling for dynamic workloads
Leverage Savings Plans and Reserved Instances
Delete unused resources and snapshots
Use cost allocation tags effectively

Budget Monitoring

Track spending against budgets :

Use Billing and Cost Management MCP to monitor budgets
Set up budget alerts for threshold breaches
Review budget utilization regularly
Adjust budgets based on trends
Implement cost controls and governance

Monitoring and Observability Best Practices

CloudWatch Metrics and Alarms

Implement comprehensive monitoring :

Use CloudWatch MCP to query metrics and logs
Set up alarms for critical metrics:
- CPU and memory utilization
- Error rates and latency
- Queue depths and processing times
- API gateway throttling
- Lambda errors and timeouts
Create CloudWatch dashboards for visualization
Use log insights for troubleshooting

Example alarm scenarios :

Lambda error rate > 1%
EC2 CPU utilization > 80%
API Gateway 4xx/5xx error spike
DynamoDB throttled requests
ECS task failures

Application Performance Monitoring

Monitor application health :

Use CloudWatch Application Signals MCP for APM
Track service-level objectives (SLOs)
Monitor application dependencies
Identify performance bottlenecks
Set up distributed tracing

Container and Kubernetes Monitoring

For containerized workloads :

Use AWS Managed Prometheus MCP for metrics
Monitor container resource utilization
Track pod and node health
Create PromQL queries for custom metrics
Set up alerts for container anomalies

Audit and Security Best Practices

CloudTrail Activity Analysis

Audit AWS activity :

Use CloudTrail MCP to analyze API activity
Track who made changes to resources
Investigate security incidents
Monitor for suspicious activity patterns
Audit compliance with policies

Common audit scenarios :

"Who deleted this S3 bucket?"
"Show all IAM role changes in the last 24 hours"
"List failed login attempts"
"Find all actions by a specific user"
"Track modifications to security groups"

Security Assessment

Regular security reviews :

Use Well-Architected Security Assessment MCP
Assess security posture against best practices
Identify security gaps and vulnerabilities
Implement recommended security improvements
Document security compliance

Security assessment areas :

Identity and Access Management (IAM)
Detective controls and monitoring
Infrastructure protection
Data protection and encryption
Incident response preparedness

Using MCP Servers Effectively

Cost Analysis Workflow

Pre-deployment : Use Pricing MCP to estimate costs
Post-deployment : Use Billing MCP to track actual spending
Analysis : Use Cost Explorer MCP for detailed cost analysis
Optimization : Implement recommendations from Cost Explorer

Monitoring Workflow

Setup : Configure CloudWatch metrics and alarms
Monitor : Use CloudWatch MCP to track key metrics
Analyze : Use Application Signals for APM insights
Troubleshoot : Query CloudWatch Logs for issue resolution

Security Workflow

Audit : Use CloudTrail MCP to review activity
Assess : Use Well-Architected Security Assessment
Remediate : Implement security recommendations
Monitor : Track security events via CloudWatch

MCP Usage Best Practices

Cost Awareness : Check pricing before deploying resources
Proactive Monitoring : Set up alarms for critical metrics
Regular Reviews : Analyze costs and performance weekly
Audit Trails : Review CloudTrail logs for compliance
Security First : Run security assessments regularly
Optimize Continuously : Act on cost and performance recommendations

Operational Excellence Guidelines

Cost Optimization

Tag Everything : Use consistent cost allocation tags
Review Monthly : Analyze spending trends and anomalies
Right-size : Match resources to actual usage
Automate : Use auto-scaling and scheduling
Monitor Budgets : Set alerts for cost overruns

Monitoring and Alerting

Critical Metrics : Alert on business-critical metrics
Noise Reduction : Fine-tune thresholds to reduce false positives
Actionable Alerts : Ensure alerts have clear remediation steps
Dashboard Visibility : Create dashboards for key stakeholders
Log Retention : Balance cost and compliance needs

Security and Compliance

Least Privilege : Grant minimum required permissions
Audit Regularly : Review CloudTrail logs for anomalies
Encrypt Data : Use encryption at rest and in transit
Assess Continuously : Run security assessments frequently
Incident Response : Have procedures for security events

Additional Resources

For detailed operational patterns and best practices, refer to the comprehensive reference:

File : references/operations-patterns.md

This reference includes:

Cost optimization strategies
Monitoring and alerting patterns
Observability best practices
Security and compliance guidelines
Troubleshooting workflows

CloudWatch Alarms Reference

File : references/cloudwatch-alarms.md

Common alarm configurations for:

Lambda functions
EC2 instances
RDS databases
DynamoDB tables
API Gateway
ECS services
Application Load Balancers

Weekly Installs

180

Repository

zxkane/aws-skills

GitHub Stars

216

First Seen

Jan 22, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

opencode151

codex149

gemini-cli146

github-copilot142

cursor134

claude-code132