amazon-bedrock-agentcore-mcp-gateway-cdk-stack
by build-failure
Overview
Deploys an Amazon Bedrock AgentCore MCP gateway with IAM/JWT authentication, supporting multiple integration targets like JIRA and Snowflake.
Installation
npx cdk deployEnvironment Variables
- CDK_CONFIG
- CDK_DEFAULT_ACCOUNT
- CDK_DEFAULT_REGION
Security Notes
The IAM policies for the Bedrock AgentCore Gateway's execution role and custom resources utilize `*` for `bedrock-agentcore:*` and `secretsmanager:*` resources. This grants overly broad permissions that violate the principle of least privilege. While API keys are stored in Secrets Manager, such extensive access poses a significant security risk if the gateway or associated custom resources are compromised, making it unsuitable for production environments without substantial hardening of IAM policies.
Similar Servers
klavis
Develop and deploy AI agents that interact with a wide array of web services (e.g., Gmail, YouTube, LinkedIn, Supabase, Salesforce, Kubernetes) through a standardized Model Context Protocol (MCP), often orchestrated by an intelligent routing layer like Strata.
mcp-context-forge
Converts web content (HTML, PDF, DOCX, etc.) and local files from a URL into high-quality Markdown format. It supports multiple conversion engines, content optimization, batch processing, and image handling.
sample-agentic-ai-demos
Provides various examples for building Agentic AI with AWS Bedrock using the Model Context Protocol (MCP) for tool invocation and inter-agent communication.
mastra-playwright-mcp-with-aws
Orchestrates an AI agent using Amazon Bedrock and AWS ECS to perform automated browser interactions via the Playwright MCP server.