aws-mcp-server
Verified Safeby alexei-led
Overview
The AWS MCP Server allows AI assistants to execute AWS CLI commands and access AWS environment context, providing a powerful interface for cloud management and automation.
Installation
docker run -i --rm -v ~/.aws:/home/appuser/.aws:ro ghcr.io/alexei-led/aws-mcp-server:latestEnvironment Variables
- AWS_PROFILE
- AWS_REGION
- AWS_DEFAULT_REGION
- AWS_CONFIG_FILE
- AWS_SHARED_CREDENTIALS_FILE
- AWS_MCP_TIMEOUT
- AWS_MCP_MAX_OUTPUT
- AWS_MCP_TRANSPORT
- AWS_MCP_SANDBOX
- AWS_MCP_SANDBOX_CREDENTIALS
Security Notes
The server *directly executes* AWS CLI commands via subprocess without application-layer command filtering, relying entirely on the host's IAM policies for authorization. It includes strong OS-level sandboxing (Landlock/Bubblewrap/Seatbelt) and recommends Docker hardening (read-only filesystem, dropped capabilities, PID limits) to mitigate host-level risks. However, a permissive IAM policy could allow the AI to perform destructive or unintended actions, as the server does not perform command validation beyond ensuring it's an 'aws' command. No hardcoded secrets or 'eval' patterns found.
Similar Servers
mcp
Enables AI assistants to interact with AWS DocumentDB databases by providing tools for connection management, database/collection operations, document CRUD, aggregation, schema analysis, and query planning.
terraform-mcp-server
The Terraform MCP Server provides seamless integration with Terraform Registry APIs and HCP Terraform/Terraform Enterprise, enabling AI assistants (LLMs) to generate high-quality Terraform code and automate IaC workflows.
gcloud-mcp
Enables AI assistants to interact with the Google Cloud environment using the gcloud CLI for natural language commands, workflow automation, and simplified cloud management.
alibaba-cloud-ops-mcp-server
The server provides a Model Context Protocol (MCP) interface for AI assistants to manage Alibaba Cloud resources such as ECS, RDS, VPC, OSS, and CloudMonitor through API and OOS integrations.