Skip to content

aashari/mcp-server-aws-sso

MCP Security & Auth

Connect AI assistants to AWS accounts via IAM Identity Center for natural‑language management of resources and execution of commands

Track releases GitHub
TypeScript Latest v4.0.0 · 3mo ago Security brief →

Features

  • Query AWS account listings, roles, and SSO status using natural language
  • Execute arbitrary AWS CLI commands against specific accounts/roles
  • Manage EC2 instances via AI‑driven shell command execution (e.g., `df -h`)
  • Monitor resources such as running EC2s, Lambda functions, CloudWatch alarms, etc.
  • Support multi‑account setups with seamless switching between environments

Recent releases

View all 14 releases →
v4.0.0 Breaking risk
Breaking changes
  • Removed support for publishing with NPM_TOKEN; now requires OIDC trusted publisher configuration on npmjs.com.
Notable features
  • Modernized dependencies and migrated to OIDC trusted publishing
Full changelog

4.0.0 (2026-02-04)

Features

  • modernize dependencies and migrate to OIDC trusted publishing (7c23f37)

BREAKING CHANGES

  • Requires OIDC trusted publisher configuration on npmjs.com. The package will no longer publish with NPM_TOKEN. Follow docs/OIDC-TRUSTED-PUBLISHING-SETUP.md for migration instructions.
View release on GitHub
v3.1.0 New feature
Notable features
  • Raw response logging with configurable truncation for large API responses
Full changelog

3.1.0 (2025-12-03)

Features

  • add raw response logging with truncation for large API responses (6ec5c29)
View release on GitHub
v3.0.0 Breaking risk
Notable features
  • Enhance AI guidance for AWS SSO login instructions
Full changelog

3.0.0 (2025-09-20)

Features

  • enhance AI guidance for AWS SSO login instructions (775033d)

BREAKING CHANGES

  • None - backward compatible enhancement
View release on GitHub
v2.0.1 Bug fix

Fixed dotenv from outputting to STDOUT in MCP mode.

Full changelog

2.0.1 (2025-09-20)

Bug Fixes

  • prevent dotenv from outputting to STDIO in MCP mode (#151) (9ec8c30)
View release on GitHub
v2.0.0 Breaking risk
Breaking changes
  • AWS CLI commands now properly handle cross‑region authentication by using the SSO token region for API calls while preserving the user's region preference for command execution.
Full changelog

2.0.0 (2025-09-20)

Bug Fixes

  • eliminate AWS CLI path warnings and unused imports (6a222c4)
  • resolve AWS CLI execution and credential region mismatch issues (aa3789c)
  • resolve CLI test failures and finalize warning elimination (62bfe62)
  • resolve test environment issues and improve type safety (183aba3)

BREAKING CHANGES

  • AWS CLI commands now properly handle cross-region authentication by using SSO token region for API calls while preserving user's region preference for command execution
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
13
Forks
11
Languages
TypeScript JavaScript
Downloads/week
165 ↑88%
NPM Maintainers
1 Single npm maintainer
Contributors
4
TypeScript
Types included ✓
View on GitHub View on npm

Install & Platforms

Install via
npm

Similar tools

casdoor
AIM-Intelligence/AIM-Guard-MCP
82ch/MCP-Dandan
intruder-io/intruder-mcp
jagmarques/asqav-mcp

Beta — feedback welcome: [email protected]