Secure_GenAI_Gateway_and_MCP_Server
Verified Safeby vijayyarabolu
Overview
A secure serverless gateway for accessing Large Language Models (LLMs) via Amazon Bedrock, incorporating input sanitization and routing.
Installation
sam build && sam deploy --guidedSecurity Notes
The `sanitize_input` function provides only basic blocking of hardcoded words (`password`, `secret_key`, `ssn`) and explicitly notes it's not as sophisticated as dedicated libraries (e.g., Microsoft Presidio). The README mentions a 'Prompt Firewall' to prevent jailbreaks, but the provided `lambda_function.py` does not contain explicit logic for system prompt enforcement or advanced prompt injection prevention beyond the basic word list. This is a gap between the described features and the implemented code. There are no hardcoded secrets or `eval` statements. The serverless architecture and IAM policies for Bedrock invocation (`bedrock:InvokeModel`) are good security practices.
Similar Servers
mcp-context-forge
A comprehensive Model Context Protocol (MCP) gateway and proxy that unifies REST, MCP, and A2A services, providing features like federation, virtual servers, rate-limiting, security, and an optional admin UI for managing web content and file conversions to markdown.
bifrost
A high-performance AI gateway with a unified interface for multiple providers, offering real-time monitoring, configuration management, and comprehensive observability for AI infrastructure.
run-model-context-protocol-servers-with-aws-lambda
This project provides client and server-side utilities for deploying Model Context Protocol (MCP) servers as AWS Lambda functions, enabling AI agents to interact with these servers.
archestra
A centralized AI platform for managing, securing, and optimizing Model Context Protocol (MCP) servers and AI agents, offering features like chat interfaces, private registries, Kubernetes orchestration, dynamic tools for security, cost monitoring, and observability.