{"id":"rafalwilinski-aws-mcp","name":"aws-mcp","homepage":"https://rwilinski.ai","repo_url":"https://github.com/RafalWilinski/aws-mcp","category":"ai-ml","subcategories":[],"tags":["ai-ml","aws","mcp","devtools","infrastructure","security"],"what_it_does":"aws-mcp is a local Model Context Protocol (MCP) server that lets an AI assistant query and manage AWS resources (across regions) using your locally configured AWS credentials/profiles (including SSO). It’s designed to be run on your machine and connected to via Claude Desktop’s MCP server configuration.","use_cases":["List and inspect AWS resources (e.g., EC2 instances, S3 buckets, Lambda functions, ECS clusters)","Perform controlled management tasks in AWS using natural language","Use different AWS profiles/SSO credentials for different environments","Support multi-region discovery and administration workflows"],"not_for":["Running as a multi-tenant hosted service for untrusted users","Any workflow that requires a public HTTP API endpoint for third-party automation","Scenarios needing strong, explicit IAM least-privilege scoping guidance within the MCP tool itself (not evidenced in README)"],"best_when":"You want a local, agent-driven AWS exploration/administration workflow from an MCP-capable assistant (e.g., Claude Desktop) and already have AWS credentials configured locally.","avoid_when":"You cannot run local software on the machine that holds AWS credentials, or you require a centrally managed, audited, least-privilege policy with clear tool-level authorization boundaries.","alternatives":["AWS CLI with scripts","Amazon Q Business","Other MCP AWS adapters (community/managed)","Custom internal tooling using AWS SDK + an LLM layer with strict authorization"],"af_score":50.5,"security_score":54.0,"reliability_score":28.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:33:59.428690+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Local AWS credentials/config (~/.aws)","AWS SSO authentication (via existing local configuration)"],"oauth":false,"scopes":false,"notes":"Authentication is not described as OAuth for the MCP server; instead it uses whatever AWS credentials/profiles are configured locally. The README mentions SSO support but does not describe any tool-level authorization scopes for AWS actions."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information in provided materials; appears to be self-hosted/local open-source tooling."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":50.5,"security_score":54.0,"reliability_score":28.8,"mcp_server_quality":72.0,"documentation_accuracy":65.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":75.0,"rate_limit_clarity":0.0,"tls_enforcement":60.0,"auth_strength":65.0,"scope_granularity":25.0,"dependency_hygiene":45.0,"secret_handling":70.0,"security_notes":"Security posture is largely dependent on local execution and your AWS IAM configuration. The README claims 'no credentials are exposed to external services' and that local credentials are used, which is a positive sign, but it does not provide evidence on logging/redaction, tool-level authorization boundaries, or explicit least-privilege guidance. Scope granularity for AWS operations is not described. TLS is not directly addressed because the server is local via MCP; this score reflects that there is no explicit network security guidance in the provided README.","uptime_documented":0.0,"version_stability":50.0,"breaking_changes_history":30.0,"error_recovery":35.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Natural-language requests may lead to broad AWS queries; ensure your AWS IAM permissions are scoped appropriately before use.","MCP server is configured via Claude Desktop local command/args; incorrect paths/node versions can prevent startup.","Multi-profile/SSO behavior depends on your local AWS configuration; mismatches can cause authorization failures."]}}