Major enhancements:
- Added Docker image building and publishing to GitHub Container Registry with multi-platform support (linux/amd64, linux/arm64)
- Expanded from basic alert retrieval to comprehensive security operations with 14 MCP tools covering:
* Vulnerability management (agent vulnerability summaries, critical vulnerabilities)
* Agent monitoring (running agents, processes, network ports)
* System statistics (weekly stats, remoted stats, log collector stats)
* Log analysis (manager logs, error logs with search capabilities)
* Cluster management (health checks, node listing)
- Updated environment configuration to support both Wazuh Manager API and Wazuh Indexer with proper SSL handling
- Enhanced documentation with detailed use cases, Docker deployment options, and comprehensive tool descriptions
- Upgraded wazuh-client dependency to v0.1.1 for expanded API capabilities
- Added agent ID formatting and validation for consistent three-digit zero-padded identifiers
This transforms the server from a simple alert fetcher into a full-featured security operations platform for AI-assisted Wazuh management.
