npm - @aws/run-mcp-servers-with-aws-lambda - Versions diffs - 0.5.12 → 0.5.13 - Mend

@aws/run-mcp-servers-with-aws-lambda 0.5.12 → 0.5.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +160 -11
package/package.json +7 -7

package/README.md CHANGED Viewed

@@ -150,6 +150,158 @@ node /var/task/node_modules/@ivotoby/openapi-mcp-server/bin/mcp-server.js
 </details>
+### Passing credentials and other secrets to the MCP server
+This library does not provide out-of-the-box mechanisms for managing any secrets needed by the wrapped
+MCP server. For example, the [GitHub MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/github)
+and the [Brave search MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/brave-search)
+require API keys to make requests to third-party APIs.
+You may configure these API keys as
+[encrypted environment variables](https://docs.aws.amazon.com/lambda/latest/dg/configuration-envvars-encryption.html)
+in the Lambda function's configuration or retrieve them from Secrets Manager in the Lambda function code (examples below).
+However, note that anyone with access to invoke the Lambda function
+will then have access to use your API key to call the third-party APIs by invoking the function.
+We recommend limiting access to the Lambda function using
+[least-privilege IAM policies](https://docs.aws.amazon.com/lambda/latest/dg/security-iam.html).
+If you use an identity-based authentication mechanism such as OAuth, you could also store and retrieve API keys per user but there are no implementation examples in this repository.
+<details>
+<summary><b>Python server example retrieving an API key from Secrets Manager</b></summary>
+```python
+import sys
+import boto3
+from mcp.client.stdio import StdioServerParameters
+# Retrieve API key from Secrets Manager
+secrets_client = boto3.client("secretsmanager")
+api_key = secrets_client.get_secret_value(SecretId="my-api-key-secret")["SecretString"]
+server_params = StdioServerParameters(
+    command=sys.executable,
+    args=["-m", "my_mcp_server"],
+    env={
+        "API_KEY": api_key,
+    },
+)
+```
+</details>
+<details>
+<summary><b>Typescript server example retrieving an API key from Secrets Manager</b></summary>
+```typescript
+import { SecretsManagerClient, GetSecretValueCommand } from "@aws-sdk/client-secrets-manager";
+const secretsClient = new SecretsManagerClient({});
+const secret = await secretsClient.send(
+  new GetSecretValueCommand({ SecretId: "my-api-key-secret" })
+);
+const apiKey = secret.SecretString;
+const serverParams = {
+  command: "npx",
+  args: ["--offline", "my-mcp-server"],
+  env: {
+    API_KEY: apiKey,
+  },
+};
+```
+</details>
+<br/>
+If your MCP server needs to call AWS APIs (such as the [MCP servers for AWS](https://github.com/awslabs/mcp)),
+you can pass the Lambda function's AWS credentials to the wrapped MCP server via environment variables.
+The wrapped MCP server's child process does not automatically inherit the Lambda execution role's credentials.
+Again, note that anyone with access to invoke the Lambda function
+will then have access to use the function's AWS credentials to call AWS APIs by invoking the function.
+We recommend limiting access to the Lambda function using
+[least-privilege IAM policies](https://docs.aws.amazon.com/lambda/latest/dg/security-iam.html).
+<details>
+<summary><b>Python server example using AWS credentials via environment variables</b></summary>
+```python
+import os
+import sys
+import boto3
+from mcp.client.stdio import StdioServerParameters
+# Get AWS credentials from Lambda execution role to pass to subprocess
+session = boto3.Session()
+credentials = session.get_credentials()
+if credentials is None:
+    raise RuntimeError("Unable to retrieve AWS credentials from the execution environment")
+resolved = credentials.get_frozen_credentials()
+server_params = StdioServerParameters(
+    command=sys.executable,
+    args=["-m", "my_mcp_server"],
+    env={
+        "AWS_REGION": os.environ.get("AWS_REGION", "us-west-2"),
+        "AWS_DEFAULT_REGION": os.environ.get("AWS_REGION", "us-west-2"),
+        "AWS_ACCESS_KEY_ID": resolved.access_key,
+        "AWS_SECRET_ACCESS_KEY": resolved.secret_key,
+        "AWS_SESSION_TOKEN": resolved.token or "",
+    },
+)
+```
+</details>
+<details>
+<summary><b>Python server example using AWS credentials via credentials file</b></summary>
+Some MCP servers require an AWS profile and do not support credentials passed via environment variables.
+In this case, you can write the credentials to a file and point the MCP server to it.
+```python
+import os
+import sys
+import boto3
+from mcp.client.stdio import StdioServerParameters
+# Get AWS credentials from Lambda execution role to pass to subprocess
+session = boto3.Session()
+credentials = session.get_credentials()
+if credentials is None:
+    raise RuntimeError("Unable to retrieve AWS credentials from the execution environment")
+resolved = credentials.get_frozen_credentials()
+# Write credentials to disk as default profile
+aws_dir = "/tmp/.aws"
+os.makedirs(aws_dir, exist_ok=True)
+with open(f"{aws_dir}/credentials", "w") as f:
+    f.write("[default]\n")
+    f.write(f"aws_access_key_id = {resolved.access_key}\n")
+    f.write(f"aws_secret_access_key = {resolved.secret_key}\n")
+    if resolved.token:
+        f.write(f"aws_session_token = {resolved.token}\n")
+server_params = StdioServerParameters(
+    command=sys.executable,
+    args=["-m", "my_mcp_server"],
+    env={
+        "AWS_REGION": os.environ.get("AWS_REGION", "us-west-2"),
+        "AWS_DEFAULT_REGION": os.environ.get("AWS_REGION", "us-west-2"),
+        "AWS_SHARED_CREDENTIALS_FILE": f"{aws_dir}/credentials",
+    },
+)
+```
+See a full, deployable example [here](examples/servers/sns-sqs/).
+</details>
 ## Use API Gateway
 ```mermaid
@@ -341,6 +493,14 @@ npx @modelcontextprotocol/inspector --cli --method tools/list <your MCP server c
 npx @modelcontextprotocol/inspector --cli --method tools/list uvx mcp-server-time > tool-schema.json
 ```
+Some MCP servers generate tool schemas that AgentCore Gateway rejects with strict validation,
+such as `"items": {}`, `"default": null`, or `anyOf` with `{"type": "null"}`.
+You may need to clean up the schema before using it:
+```bash
+python3 scripts/clean-tool-schema.py tool-schema.json
+```
 <details>
 <summary><b>Python server example</b></summary>
@@ -780,17 +940,6 @@ See a full example as part of the sample chatbot [here](examples/chatbots/typesc
   the [sqlite MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/sqlite),
   the [filesystem MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/filesystem),
   and the [git MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/git).
-- This library does not provide mechanisms for managing any secrets needed by the wrapped
-  MCP server. For example, the [GitHub MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/github)
-  and the [Brave search MCP server](https://github.com/modelcontextprotocol/servers/tree/main/src/brave-search)
-  require API keys to make requests to third-party APIs.
-  You may configure these API keys as
-  [encrypted environment variables](https://docs.aws.amazon.com/lambda/latest/dg/configuration-envvars-encryption.html)
-  in the Lambda function's configuration. However, note that anyone with access to invoke the Lambda function
-  will then have access to use your API key to call the third-party APIs by invoking the function.
-  We recommend limiting access to the Lambda function using
-  [least-privilege IAM policies](https://docs.aws.amazon.com/lambda/latest/dg/security-iam.html).
-  If you use an identity-based authentication mechanism such as OAuth, you could also store and retrieve API keys per user but there are no implementation examples in this repository.
 ## Deploy and run the examples

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws/run-mcp-servers-with-aws-lambda",
   "description": "Run Model Context Protocol (MCP) servers with AWS Lambda",
-  "version": "0.5.12",
+  "version": "0.5.13",
   "type": "module",
   "license": "Apache-2.0",
   "author": {
@@ -44,21 +44,21 @@
     "@tsconfig/recommended": "^1.0.13",
     "@types/aws-lambda": "^8.10.161",
     "@types/jest": "^30.0.0",
-    "@types/node": "^25.2.0",
+    "@types/node": "^25.5.0",
     "aws-sdk-client-mock": "^4.1.0",
     "aws-sdk-client-mock-jest": "^4.1.0",
-    "eslint": "^10.0.2",
+    "eslint": "^10.0.3",
     "eslint-plugin-check-file": "^3.3.1",
-    "jest": "^30.2.0",
+    "jest": "^30.3.0",
     "ts-jest": "^29.4.6",
     "tsx": "^4.21.0",
     "typescript": "^5.9.3",
-    "typescript-eslint": "^8.56.1"
+    "typescript-eslint": "^8.57.1"
   },
   "dependencies": {
     "@aws-crypto/sha256-js": "^5.2.0",
-    "@aws-sdk/client-lambda": "^3.1000.0",
-    "@aws-sdk/credential-provider-node": "^3.958.0",
+    "@aws-sdk/client-lambda": "^3.1010.0",
+    "@aws-sdk/credential-provider-node": "^3.972.21",
     "@aws-sdk/protocol-http": "^3.374.0",
     "@aws-sdk/types": "^3.910.0",
     "@modelcontextprotocol/sdk": "^1.27.1",