AWS CDK (Cloud Development Kit)

AWS CDK lets you define cloud infrastructure as code in TypeScript, Python, Java, or Go, compiled to CloudFormation templates.

Evaluated Mar 06, 2026 (0d ago) vv2
Homepage ↗ Repo ↗ Other aws iac typescript python cloudformation constructs
⚙ Agent Friendliness
63
/ 100
Can an agent use this?
🔒 Security
29
/ 100
Is it safe for agents?
⚡ Reliability
62
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
--
Documentation
88
Error Messages
80
Auth Simplicity
72
Rate Limits
100

🔒 Security

TLS Enforcement
0
Auth Strength
0
Scope Granularity
0
Dep. Hygiene
85
Secret Handling
82

Never hardcode secrets in CDK code — use SecretValue.ssmSecure() or CfnParameter with NoEcho for sensitive values.

⚡ Reliability

Uptime/SLA
0
Version Stability
85
Breaking Changes
80
Error Recovery
82
AF Security Reliability

Best When

Best for AWS-native teams who want imperative programming constructs, reusability, and type safety for infrastructure.

Avoid When

Avoid when team prefers declarative IaC (Terraform/CloudFormation) or when multi-cloud support is required.

Use Cases

  • Define complete AWS infrastructure using familiar programming languages with IDE autocompletion
  • Build reusable infrastructure constructs (L3) that encode organizational best practices
  • Generate CloudFormation templates programmatically for review and deployment pipelines
  • Use CDK Pipelines for self-mutating CI/CD pipelines deployed to multiple accounts/regions
  • Compose complex agent infrastructure (Lambda + API Gateway + DynamoDB) with type-safe constructs

Not For

  • Multi-cloud infrastructure — CDK synthesizes to CloudFormation which is AWS-only
  • Teams preferring declarative YAML/HCL over imperative programming for infrastructure
  • Simple single-resource deployments where CloudFormation YAML is more transparent

Interface

REST API
No
GraphQL
No
gRPC
No
MCP Server
No
SDK
Yes
Webhooks
No

Authentication

Methods: aws_sigv4 iam_role
OAuth: No Scopes: Yes

Uses AWS credentials for cdk deploy. CDK bootstrapping requires AdministratorAccess or scoped CDK deployment permissions.

Pricing

Model: open_source
Free tier: Yes
Requires CC: Yes

Apache 2.0 licensed. AWS account with billing required for cdk deploy.

Agent Metadata

Pagination
none
Idempotent
Full
Retry Guidance
Not documented

Known Gotchas

  • cdk bootstrap must run once per account/region before first deploy — missing bootstrap causes CDKToolkit stack errors
  • CDK asset uploads go to S3 (ECR for Docker) — large Lambda bundles slow down deploy due to S3 upload time
  • Construct IDs are part of the CloudFormation logical ID — renaming constructs causes resource replacement (delete + recreate), not update
  • Stack outputs and cross-stack references create implicit stack dependencies — deploy order matters and circular dependencies cause failures
  • CDK v2 bundles all AWS constructs in a single package (aws-cdk-lib) — CDK v1's per-service packages are deprecated and incompatible

Alternatives

aws-cloudformation-api terraform-api pulumi-api

Full Evaluation Report

Detailed scoring breakdown, competitive positioning, security analysis, and improvement recommendations for AWS CDK (Cloud Development Kit).

$99
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-06.

5173
Packages Evaluated
26151
Need Evaluation
173
Need Re-evaluation
Community Powered