Mezmo
Mezmo provides a comprehensive platform for log management and telemetry data processing, enabling organizations to collect, analyze, and manage their log data efficiently.
Verdict
Common use cases
- Send CI pipeline logs to Mezmo
- Ingest serverless function errors from chat
- Clean up stale pipeline alerts
- Push local dev logs for analysis
- Record incident timeline as structured logs
Integration
- Vendor
- Mezmo
- Category
- other
- Auth
- API_KEY
- Tools
- 2
- Composio slug
mezmo
Tools
- Delete Pipeline Alertdestructive
Tool to delete an alert for a specific component within a pipeline. use after confirming pipeline id, component kind, component id, and alert id.
- Ingest logs to Mezmo
Tool to ingest log events to mezmo. use when sending structured logs from a host to mezmo log analysis.
Setup
Setup guide
- 11. Open your Switchy workspace and navigate to Settings > Integrations. 2. Click 'Add Integration' and select Mezmo from the list. 3. You'll be prompted to enter a Mezmo API key — generate one in your Mezmo account under Settings > API Keys. 4. Paste the key into Switchy and click 'Connect'. 5. Switchy will verify the key and confirm the connection. 6. Open any Space and type '@Mezmo' to see the integration appear in the mention menu. 7. Test the connection by asking '@Mezmo ingest a test log event with message "hello from Switchy" and severity info'. 8. Check your Mezmo dashboard to confirm the log arrived. 9. To delete an alert, you'll need the pipeline ID, component kind, component ID, and alert ID from Mezmo's UI — the tool won't list these for you, so have them ready before invoking.
What teammates see: by default, memories from Mezmo are scoped to the Space (PROJECT visibility) - you can mark any memory PRIVATE or share it ORG-wide.
Works well with
Top models
Compatibility data appears once enough Spaces have used this MCP together with a given model.
How Switchy teams use it
Starter prompts
Ingest Deployment Log
@Mezmo ingest a log event with message 'Deployment completed for service auth-api version 2.1.0' severity info and metadata environment production timestamp nowOpen in a Space →
Log Error from Script
@Mezmo ingest a log event with message 'Database connection timeout in user-service' severity error and metadata stack_trace 'at connect() line 42' host worker-03Open in a Space →
Delete Pipeline Alert
@Mezmo delete the alert with alert_id abc123 from pipeline_id pipe-456 component_kind processor component_id comp-789Open in a Space →
Record Incident Event
@Mezmo ingest a log event with message 'Incident INC-5678 escalated to on-call engineer' severity warning and metadata incident_id INC-5678 escalated_at nowOpen in a Space →
Send Test Log
@Mezmo ingest a log event with message 'Test log from Switchy workspace' severity info and metadata source switchy test trueOpen in a Space →
Example outputs
Illustrative - representative of the model's voice and quality, not literal recordings.
@Mezmo show me all active alerts for pipeline prod-api-logs and tell me which components are triggering them most frequently
I don't have a direct tool to list all alerts, but I can help you delete specific alerts once you identify them. To get a full view of active alerts, you'll need to check your Mezmo dashboard or use their API directly. If you provide a pipeline ID, component kind, component ID, and alert ID, I can remove alerts that are no longer needed. For monitoring which components trigger alerts most often, consider exporting alert data from Mezmo's UI for analysis.
This example highlights a gap: the MCP provides alert deletion but not alert listing or querying. Users expecting full alert management will need to combine this with Mezmo's dashboard or REST API. The delete tool requires four specific IDs, so you must already know which alert to remove.
@Mezmo ingest these application errors from host web-server-03: three 500 errors at 14:32 UTC with stack traces showing database timeout on user_sessions table
Log events ingested successfully to Mezmo. I've sent three structured log entries tagged with host 'web-server-03', severity 'error', timestamp '14:32 UTC', and metadata indicating database timeouts on the user_sessions table. These logs are now available in your Mezmo pipeline for filtering, alerting, and correlation with other telemetry. You can view them in the Mezmo UI under the ingestion source tied to this API key.
This demonstrates the primary ingest capability. The MCP accepts structured log data and forwards it to Mezmo's ingestion endpoint. You control the schema and metadata, so ensure your logs include useful fields (host, severity, timestamp) for downstream filtering. Rate limits depend on your Mezmo plan.
@Mezmo I'm seeing repeated timeout alerts on component db-connection-pool in pipeline prod-api-logs — delete alert ID alert-7f3a9c so we can reconfigure the threshold without noise
Alert deleted. I've removed alert ID 'alert-7f3a9c' from component 'db-connection-pool' (kind: processor) in pipeline 'prod-api-logs'. This alert will no longer fire. If you're adjusting thresholds, remember to recreate the alert with updated conditions in the Mezmo UI after testing your new configuration. Deleting an alert is permanent and cannot be undone via this MCP.
This showcases the delete-alert tool in a realistic workflow: silencing a noisy alert before reconfiguration. The tool requires exact IDs (pipeline, component kind, component ID, alert ID), so you must gather these from Mezmo's UI first. Deletion is immediate and irreversible, so confirm the alert ID before running this prompt.
Use-case deep-dives
When Mezmo MCP makes sense for incident post-mortems
A 6-person SRE team runs post-mortems in Switchy after production incidents. They need to pull application logs from the incident window into the workspace so the team can annotate and discuss root cause together. The Mezmo MCP's ingest tool lets you push structured logs directly into Mezmo from the AI workspace—useful if your team already uses Mezmo for log analysis and wants to centralize incident artifacts there. The catch: this MCP only has two tools, so it won't help you query or search logs once they're in Mezmo. If your post-mortem workflow requires reading logs back out or setting up alerts during the session, you'll need Mezmo's web UI or a different integration. This MCP is a write-only bridge for teams that treat Switchy as the incident command center and Mezmo as the long-term log store.
Using Mezmo MCP to prune stale pipeline alerts
A 3-person data engineering team just refactored their log pipeline in Mezmo and needs to delete a dozen obsolete alerts tied to old component IDs. The Mezmo MCP's delete alert tool works here if you already know the exact pipeline ID, component kind, component ID, and alert ID for each stale alert. The workflow is manual: you confirm each identifier in Mezmo's UI or docs, then run the delete tool from Switchy to clean up the alert. This is faster than clicking through Mezmo's web interface for bulk deletions, but it's not a discovery tool—the MCP won't list your alerts or suggest which ones are stale. If your team refactors pipelines monthly and you're comfortable with the four-parameter lookup, this MCP saves 10 minutes per cleanup session. Otherwise, stick with Mezmo's dashboard.
When Mezmo MCP fits a support team's log handoff
A 5-person customer support team escalates bugs to engineering by forwarding application logs from customer sessions. They use Switchy to draft the escalation ticket and want to send the relevant logs to Mezmo so the engineering team can investigate without switching tools. The Mezmo MCP's ingest tool handles this if your support team can structure the logs as JSON events and your engineering team already monitors Mezmo. The limitation: the MCP doesn't validate log schema or confirm ingestion success, so you'll need a separate check in Mezmo to verify the logs landed. If your support team escalates fewer than 10 tickets per week and engineering prefers Mezmo over email attachments, this MCP closes the loop. For higher-volume support workflows or teams that need ingestion receipts, a dedicated logging API client is more reliable.
Frequently asked
What does the Mezmo MCP do in Switchy?
It lets your team send structured logs to Mezmo's analysis platform and manage pipeline alerts. You can ingest log events from any host or service, then delete specific component alerts once you've confirmed the pipeline ID and component details. Useful if you're already using Mezmo for observability and want AI agents to push logs or clean up alert noise.
Do I need admin access to connect Mezmo?
You need a Mezmo API key with write permissions for log ingestion and alert management. Mezmo uses API key authentication, so whoever connects it in Switchy must generate a key from their Mezmo account settings. If your team restricts key creation to admins, you'll need admin help. Otherwise, any user with key-generation rights can connect it.
Can the Mezmo MCP query or search existing logs?
No. This integration only ingests new log events and deletes pipeline alerts. If you need to search historical logs or run queries, use Mezmo's web UI or their query API directly. The MCP is designed for write operations — pushing logs in and cleaning up alerts — not for reading or analyzing data that's already in Mezmo.
Why use this instead of sending logs via syslog or HTTP directly?
You wouldn't, for production log shipping. Use Mezmo's native agents or HTTP endpoints for that. This MCP is for ad-hoc scenarios where an AI agent needs to log an event or delete an alert as part of a workflow. Think debugging scripts, incident response automation, or prototype integrations — not your main log pipeline.
Who on the team should connect the Mezmo MCP?
Whoever owns your observability stack or has access to Mezmo API keys. Since the integration can ingest logs and delete alerts, you want someone who understands your pipeline structure and won't accidentally remove alerts that matter. If you're just testing, any developer with a Mezmo account can connect it to experiment.