aws-lambda-mcp
Verified Safeby debanjanbasu
Overview
Provides a secure, OAuth-authenticated Model Context Protocol (MCP) server for Amazon Bedrock AgentCore, enabling AI agents to interact with custom tools for functionalities like weather lookup and personalized greetings.
Installation
No command providedEnvironment Variables
- AWS_IAM_ROLE_ARN
- AZURE_CLIENT_ID
- AZURE_TENANT_ID
- TF_BACKEND_BUCKET
- APP_PRIVATE_KEY
- APP_ID
- OPENCODE_API_KEY
Security Notes
The project demonstrates strong compile-time security measures with `Cargo.toml` lints (`unsafe_code = "deny"`, `unwrap_used = "deny"`, `expect_used = "deny"`, `panic = "deny"`), promoting robust and safe Rust code. While `jsonwebtoken::dangerous::insecure_decode` is used in the interceptor, it's contextually acceptable as the architectural diagram indicates full JWT validation (OIDC) occurs upstream at the Bedrock Gateway; the interceptor's role is specifically for claim extraction and expiry checking. Configurable logging levels allow balancing operational visibility with sensitive data protection. Adherence to least privilege for IAM roles, HTTPS for external API calls, and explicit guidance against hardcoding secrets further bolster security.
Similar Servers
rust-mcp-sdk
A high-performance, asynchronous Rust SDK for building Model Context Protocol (MCP) servers and clients, supporting various transports and authentication methods.
sample-agentic-ai-demos
Provides various examples for building Agentic AI with AWS Bedrock using the Model Context Protocol (MCP) for tool invocation and inter-agent communication.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.
leanmcp-sdk
Building production-ready Model Context Protocol (MCP) servers with TypeScript, supporting features like authentication, elicitation, and UI integration for AI agents.