AWS Model Context Protocol Server

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for alexei-led from gravatar.com alexei-led

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Alexei Ledenev
  • Requires: Python >=3.13
  • Provides-Extra: dev , prod
Report project as malware

Project description

AWS MCP Server

CI PyPI Code Coverage Linter: Ruff Docker Image

Give Claude access to all 200+ AWS services through the AWS CLI.

Demo

Demo

What It Does

This MCP server lets Claude run AWS CLI commands on your behalf. Instead of wrapping each AWS API individually, it wraps the CLI itself—giving Claude complete AWS access through just two tools:

Tool Purpose
aws_cli_help Get documentation for any AWS command
aws_cli_pipeline Execute AWS CLI commands with optional pipes (jq, grep, etc.)

Claude learns commands on-demand using --help, then executes them. Your IAM policy controls what it can actually do.

flowchart LR
    Claude[Claude] -->|MCP| Server[AWS MCP Server]
    Server --> CLI[AWS CLI]
    CLI --> AWS[AWS Cloud]
    IAM[Your IAM Policy] -.->|controls| AWS

What's New

  • Streamable HTTP transport — New streamable-http transport for web-based MCP clients, replacing the deprecated sse transport (#33)
  • Input validation error handling — Validation errors now return proper MCP tool errors (isError: true) instead of regular results (#34)
  • Server description — Server advertises its purpose to MCP clients via the instructions field (#35)
  • Server icons — Server provides icon metadata for MCP client display (#36)
  • Graceful shutdown — Server disconnects cleanly when the MCP client disconnects (#16)

Quick Start

Prerequisites

Claude Code

Add to your MCP settings (Cmd+Shift+P → "Claude: Open MCP Config"):

{
  "mcpServers": {
    "aws": {
      "command": "uvx",
      "args": ["aws-mcp"]
    }
  }
}

Claude Desktop

Add to your Claude Desktop config file:

macOS: ~/Library/Application Support/Claude/claude_desktop_config.json Windows: %APPDATA%\Claude\claude_desktop_config.json

{
  "mcpServers": {
    "aws": {
      "command": "uvx",
      "args": ["aws-mcp"]
    }
  }
}

Docker (More Secure)

Docker provides stronger isolation by running commands in a container:

{
  "mcpServers": {
    "aws": {
      "command": "docker",
      "args": [
        "run",
        "-i",
        "--rm",
        "-v",
        "~/.aws:/home/appuser/.aws:ro",
        "ghcr.io/alexei-led/aws-mcp-server:latest"
      ]
    }
  }
}

Note: Replace ~/.aws with the full path on Windows (e.g., C:\Users\YOU\.aws).

Docker with Streamable HTTP Transport

For web-based MCP clients, use the streamable-http transport:

docker run --rm -p 8000:8000 \
  -e AWS_MCP_TRANSPORT=streamable-http \
  -v ~/.aws:/home/appuser/.aws:ro \
  ghcr.io/alexei-led/aws-mcp-server:latest

The server will be available at http://localhost:8000/mcp.

Note: The sse transport is deprecated. Use streamable-http instead.

AWS Credentials

The server uses the standard AWS credential chain. Your credentials are discovered automatically from:

  1. Environment variables: AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY
  2. Credentials file: ~/.aws/credentials
  3. Config file: ~/.aws/config (for profiles and region)
  4. IAM role: When running on EC2, ECS, or Lambda

To use a specific profile:

{
  "mcpServers": {
    "aws": {
      "command": "uvx",
      "args": ["aws-mcp"],
      "env": {
        "AWS_PROFILE": "my-profile"
      }
    }
  }
}

Configuration

AWS Settings

Environment Variable Description Default
AWS_PROFILE AWS profile to use default
AWS_REGION AWS region (also accepts AWS_DEFAULT_REGION) us-east-1
AWS_CONFIG_FILE Custom path to AWS config file ~/.aws/config
AWS_SHARED_CREDENTIALS_FILE Custom path to credentials file ~/.aws/credentials

Server Settings

Environment Variable Description Default
AWS_MCP_TIMEOUT Command execution timeout in seconds 300
AWS_MCP_MAX_OUTPUT Maximum output size in characters 100000
AWS_MCP_TRANSPORT Transport protocol (stdio, sse, or streamable-http) stdio
AWS_MCP_SANDBOX Sandbox mode (auto, disabled, required) auto
AWS_MCP_SANDBOX_CREDENTIALS Credential passing (env, aws_config, both) both

Security

Your IAM policy is your security boundary. This server executes whatever AWS commands Claude requests—IAM controls what actually succeeds.

Best practices:

  • Use a least-privilege IAM role (only permissions Claude needs)
  • Never use root credentials
  • Consider Docker for additional host isolation

For detailed security architecture, see Security Documentation.

Documentation

License

MIT License — see LICENSE for details.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for alexei-led from gravatar.com alexei-led

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Alexei Ledenev
  • Requires: Python >=3.13
  • Provides-Extra: dev , prod

Release history Release notifications | RSS feed

1.7.0

This version

1.6.0

1.5.6

1.5.5

1.5.4

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

aws_mcp-1.6.0.tar.gz (5.6 MB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

aws_mcp-1.6.0-py3-none-any.whl (33.5 kB view details)

Uploaded Python 3

File details

Details for the file aws_mcp-1.6.0.tar.gz.

File metadata

  • Download URL: aws_mcp-1.6.0.tar.gz
  • Upload date:
  • Size: 5.6 MB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.10.2 {"installer":{"name":"uv","version":"0.10.2","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for aws_mcp-1.6.0.tar.gz
Algorithm Hash digest
SHA256 8641b2a19fd9657003fb5743a25cfb715a73b4fa1a4372549ebde2342401bcad
MD5 f86be5dbf1956567e0faca4bd3396c44
BLAKE2b-256 ee7f2962401042b7ba52ba329662b021b39ca513150c4ff5283864ad105c4926

See more details on using hashes here.

File details

Details for the file aws_mcp-1.6.0-py3-none-any.whl.

File metadata

  • Download URL: aws_mcp-1.6.0-py3-none-any.whl
  • Upload date:
  • Size: 33.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.10.2 {"installer":{"name":"uv","version":"0.10.2","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for aws_mcp-1.6.0-py3-none-any.whl
Algorithm Hash digest
SHA256 376802886af0379ed06832b548479008d7a279ea62b9b8d2b63b9f6b46439a50
MD5 1b811da0655cb1a3f7b81d1d17defb58
BLAKE2b-256 2e644cb7e516f428aaac9bf513a30bd65aadc861063e8811f65924b91f9680e3

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page