PyPI - awslabs.ccapi-mcp-server - Versions diffs - 1.0.1__tar.gz → 1.0.4__tar.gz - Mend

awslabs.ccapi-mcp-server 1.0.1tar.gz → 1.0.4tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: awslabs.ccapi-mcp-server
-Version: 1.0.1
+Version: 1.0.4
 Summary: An AWS Labs Model Context Protocol (MCP) server for managing AWS resources via Cloud Control API
 Project-URL: homepage, https://awslabs.github.io/mcp/
 Project-URL: docs, https://awslabs.github.io/mcp/servers/ccapi-mcp-server/
@@ -229,6 +229,36 @@ Configure the MCP server in your MCP client configuration (e.g., for Amazon Q De
   }
 }
 ```
+### Windows Installation
+For Windows users, the MCP server configuration format is slightly different:
+```json
+{
+  "mcpServers": {
+    "awslabs.ccapi-mcp-server": {
+      "disabled": false,
+      "timeout": 60,
+      "type": "stdio",
+      "command": "uv",
+      "args": [
+        "tool",
+        "run",
+        "--from",
+        "awslabs.ccapi-mcp-server@latest",
+        "awslabs.ccapi-mcp-server.exe"
+      ],
+      "env": {
+        "AWS_PROFILE": "your-named-profile",
+        "DEFAULT_TAGS": "enabled",
+        "SECURITY_SCANNING": "enabled",
+        "FASTMCP_LOG_LEVEL": "ERROR"
+      }
+    }
+  }
+}
+```
 _Note: Uses the default region from your AWS profile. Add `"AWS_REGION": "us-west-2"` (or other desired AWS Region) to override._
@@ -528,61 +558,6 @@ Creates CloudFormation templates from existing AWS resources using AWS CloudForm
   - Amazon Q Developer CLI: `use_aws`, `execute_bash`, `fs_read`, `fs_write`
   - Other tools may have similar built-in AWS or system capabilities
-#### The `use_aws` Problem
-**Most Problematic**: The `use_aws` tool (part of Amazon Q Developer CLI) is particularly problematic because it directly competes with this MCP server's AWS operations but operates separately, meaning it won't use any of the helpful features available in this MCP server such as Checkov security scanning.
-**What happens when LLM uses `use_aws`:**
-- ❌ No Checkov security scanning
-- ❌ No workflow validation
-- ❌ No credential verification display
-- ❌ No resource tagging
-- ❌ CCAPI MCP Server is not involved at all
-**If this happens:**
-1. Tell the LLM: "Please use the CCAPI MCP Server instead for AWS operations"
-2. Experiment with prompts like "Using the CCAPI MCP server, create..."
-3. For a scalable solution, implement the rules/instructions mentioned below
-**Note**: This is not a limitation of the CCAPI MCP Server - it's a current MCP protocol limitation. MCP has no native tool ordering concept or functionality, allowing LLMs to choose any available MCP server/tool. This flexibility is both good (choice) and problematic (undesirable sever/tool selection). We use a token-based approach to enforce some ordering in tool usage the LLM must follow, however this does not span across multiple MCP servers. It is internal to this MCP server.
-### Recommendation
-Consult your LLM tool's documentation (Cursor, Cline, Amazon Q Developer, etc.) for how to provide rules/context/instructions to guide MCP server/tool selection. Most support some form of instruction mechanism.
-**Example instruction content:**
-```markdown
-# AWS Tool Selection Rules - MANDATORY FOR ALL LLM RESPONSES
-## STEP 1: Always Use CCAPI MCP Server First
-**TRIGGER CONDITIONS:**
-- ANY mention of AWS services or resources
-- ANY request involving AWS infrastructure, applications, or services
-- When in doubt, default to offering CCAPI MCP Server
-**REQUIRED ACTION:**
-ASK: "This seems like a good fit for the AWS Cloud Control API MCP server. Would you like to use the CCAPI MCP server for this?"
-## STEP 2: Only If CCAPI MCP Server Fails
-**IF ERROR OCCURS:**
-1. Show exact error message to user
-2. Explain: "⚠️ SECURITY WARNING: Fallback tools (use_aws, aws_cli) will bypass ALL security scanning and the CCAPI MCP Server entirely."
-3. Ask: "How do you want to proceed: (a) troubleshoot CCAPI MCP, (b) use unsecured AWS CLI, or (c) generate template?"
-4. Wait for explicit user choice before proceeding
-## FORBIDDEN ACTIONS
-- Never use use_aws, aws_cli, or executeBash for AWS operations without trying CCAPI MCP Server first
-- Never skip the user confirmation steps
-```
 ## Basic Usage
 Examples of how to use the AWS Infrastructure as Code MCP Server:

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/README.md RENAMED Viewed

@@ -198,6 +198,36 @@ Configure the MCP server in your MCP client configuration (e.g., for Amazon Q De
   }
 }
 ```
+### Windows Installation
+For Windows users, the MCP server configuration format is slightly different:
+```json
+{
+  "mcpServers": {
+    "awslabs.ccapi-mcp-server": {
+      "disabled": false,
+      "timeout": 60,
+      "type": "stdio",
+      "command": "uv",
+      "args": [
+        "tool",
+        "run",
+        "--from",
+        "awslabs.ccapi-mcp-server@latest",
+        "awslabs.ccapi-mcp-server.exe"
+      ],
+      "env": {
+        "AWS_PROFILE": "your-named-profile",
+        "DEFAULT_TAGS": "enabled",
+        "SECURITY_SCANNING": "enabled",
+        "FASTMCP_LOG_LEVEL": "ERROR"
+      }
+    }
+  }
+}
+```
 _Note: Uses the default region from your AWS profile. Add `"AWS_REGION": "us-west-2"` (or other desired AWS Region) to override._
@@ -497,61 +527,6 @@ Creates CloudFormation templates from existing AWS resources using AWS CloudForm
   - Amazon Q Developer CLI: `use_aws`, `execute_bash`, `fs_read`, `fs_write`
   - Other tools may have similar built-in AWS or system capabilities
-#### The `use_aws` Problem
-**Most Problematic**: The `use_aws` tool (part of Amazon Q Developer CLI) is particularly problematic because it directly competes with this MCP server's AWS operations but operates separately, meaning it won't use any of the helpful features available in this MCP server such as Checkov security scanning.
-**What happens when LLM uses `use_aws`:**
-- ❌ No Checkov security scanning
-- ❌ No workflow validation
-- ❌ No credential verification display
-- ❌ No resource tagging
-- ❌ CCAPI MCP Server is not involved at all
-**If this happens:**
-1. Tell the LLM: "Please use the CCAPI MCP Server instead for AWS operations"
-2. Experiment with prompts like "Using the CCAPI MCP server, create..."
-3. For a scalable solution, implement the rules/instructions mentioned below
-**Note**: This is not a limitation of the CCAPI MCP Server - it's a current MCP protocol limitation. MCP has no native tool ordering concept or functionality, allowing LLMs to choose any available MCP server/tool. This flexibility is both good (choice) and problematic (undesirable sever/tool selection). We use a token-based approach to enforce some ordering in tool usage the LLM must follow, however this does not span across multiple MCP servers. It is internal to this MCP server.
-### Recommendation
-Consult your LLM tool's documentation (Cursor, Cline, Amazon Q Developer, etc.) for how to provide rules/context/instructions to guide MCP server/tool selection. Most support some form of instruction mechanism.
-**Example instruction content:**
-```markdown
-# AWS Tool Selection Rules - MANDATORY FOR ALL LLM RESPONSES
-## STEP 1: Always Use CCAPI MCP Server First
-**TRIGGER CONDITIONS:**
-- ANY mention of AWS services or resources
-- ANY request involving AWS infrastructure, applications, or services
-- When in doubt, default to offering CCAPI MCP Server
-**REQUIRED ACTION:**
-ASK: "This seems like a good fit for the AWS Cloud Control API MCP server. Would you like to use the CCAPI MCP server for this?"
-## STEP 2: Only If CCAPI MCP Server Fails
-**IF ERROR OCCURS:**
-1. Show exact error message to user
-2. Explain: "⚠️ SECURITY WARNING: Fallback tools (use_aws, aws_cli) will bypass ALL security scanning and the CCAPI MCP Server entirely."
-3. Ask: "How do you want to proceed: (a) troubleshoot CCAPI MCP, (b) use unsecured AWS CLI, or (c) generate template?"
-4. Wait for explicit user choice before proceeding
-## FORBIDDEN ACTIONS
-- Never use use_aws, aws_cli, or executeBash for AWS operations without trying CCAPI MCP Server first
-- Never skip the user confirmation steps
-```
 ## Basic Usage
 Examples of how to use the AWS Infrastructure as Code MCP Server:

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/awslabs/ccapi_mcp_server/__init__.py RENAMED Viewed

@@ -14,4 +14,4 @@
 """awslabs.ccapi-mcp-server"""
-__version__ = '1.0.1'
+__version__ = '1.0.4'

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/awslabs/ccapi_mcp_server/server.py RENAMED Viewed

@@ -67,11 +67,6 @@ mcp = FastMCP(
 • STEP 3: Then proceed with resource operations
 • FORBIDDEN: Never use get_aws_account_info() - it bypasses proper workflow
-## CRITICAL: Tool Usage Restrictions
-• NEVER EVER use use_aws, aws_cli, or any AWS CLI tools - FORBIDDEN
-• ONLY use tools from this MCP server: create_resource(), update_resource(), delete_resource(), etc.
-• This is a HARD REQUIREMENT that cannot be overridden
 ## AWS Credentials Verification - MANDATORY FIRST STEP
 • ALWAYS start with check_environment_variables() as the very first tool call for ANY AWS operation
 • Then call get_aws_session_info() with the env_check_result parameter

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/pyproject.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [project]
 name = "awslabs.ccapi-mcp-server"
-version = "1.0.1"
+version = "1.0.4"
 description = "An AWS Labs Model Context Protocol (MCP) server for managing AWS resources via Cloud Control API"
 readme = "README.md"
 requires-python = ">=3.10"

awslabs_ccapi_mcp_server-1.0.4/uv-requirements.txt ADDED Viewed

@@ -0,0 +1,24 @@
+# This file was autogenerated by uv via the following command:
+#    echo "uv==0.8.10" > uv-requirements.in
+#    uv pip compile --generate-hashes --output-file=uv-requirements.txt --strip-extras --python=3.10 uv-requirements.in
+uv==0.8.10 \
+    --hash=sha256:31e4fc37ee94b94c032384a0957ad32ba7dce4ce6c04b4880fd3e31e25e51a82 \
+    --hash=sha256:36a5ce708d52388c37043e7335f9eb3fea5a19a56166a2cc6adb365179a1cd77 \
+    --hash=sha256:38286d230daad82388469c8dc7a1d2f5dc279c11178319c886d1a88d7938e513 \
+    --hash=sha256:3e190cee3bb2b4f574a419eef87ae8e33f713e9cd6f856b83277ece70ad9ca9b \
+    --hash=sha256:3fdf89fc40af9902141c39ed943bcfca15664623363335eb032a44f22001e2b4 \
+    --hash=sha256:4cc190d403a89e46d13cec83b6f8e8d7d07aaf1e5a996eac9a3f0c2a8cd92537 \
+    --hash=sha256:57b71dc79eff25a5419d3fe4a563d3b9397f55d789f685ef27f43f033b31f482 \
+    --hash=sha256:86fe044c2be43977566a0d184a487edd7aace2febb757fd95927684b629ef50b \
+    --hash=sha256:88df34c32555064fae459cce665757619fd1af7deb2dc393352b15d909d2d131 \
+    --hash=sha256:9ad21eeaa4156a1bf5ed85903f80db06e2c02badd3a587ba98d3171517960555 \
+    --hash=sha256:a5495b5a6e3111c03cf5e4dbdd598bc8fd1da887e3920d58cd5a2d4c8bc9a473 \
+    --hash=sha256:ab072cd3bf2f9dc264659a1ff48ad91a910ac4830bcfe965e2d3f89c86646f46 \
+    --hash=sha256:af8a5526b0e331775a264fa0dbccfd53c183cb974f269a208af136d7561f9eb2 \
+    --hash=sha256:b00637c63d5dfc9f879281c5c91db2bb909ab1f9ab275dab015e7fb6cac6be5b \
+    --hash=sha256:b3ff3c451fcd23ea78356d8c18e802d0e423cbe655273601e3ec039a51b33286 \
+    --hash=sha256:c4a493cd4b15b3aef11523531aff96a77a586666a63e842fa437966b7b7ee62d \
+    --hash=sha256:defc50bb319be2d58be74a680710cd4b7697e88d5f79974eacd354df95f0b6b0 \
+    --hash=sha256:e0a02bcec766eb0862b7082ab746b204add7d9fcaa62322502d159b5a7ccc54a \
+    --hash=sha256:eb79a46d8099f563ef58237bf4e9009f876a40145e757ea883a92b24b724d01e
+    # via -r uv-requirements.in

awslabs_ccapi_mcp_server-1.0.1/uv-requirements.txt DELETED Viewed

@@ -1 +0,0 @@

- #\n# This file is autogenerated by pip-compile with Python 3.10\n# by the following command:\n#\n# pip-compile --generate-hashes --output-file=uv-requirements.txt --strip-extras uv-requirements-0.7.13.in\n#\nuv==0.7.13 \\\n --hash=sha256:05f3c03c4ea55d294f3da725b6c2c2ff544754c18552da7594def4ec3889dcfb \\\n --hash=sha256:1afdbfcabc3425b383141ba42d413841c0a48b9ee0f4da65459313275e3cea84 \\\n --hash=sha256:33837aca7bdf02d47554d5d44f9e71756ee17c97073b07b4afead25309855bc7 \\\n --hash=sha256:4efa555b217e15767f0691a51d435f7bb2b0bf473fdfd59f173aeda8a93b8d17 \\\n --hash=sha256:4f828174e15a557d3bc0f809de76135c3b66bcbf524657f8ced9d22fc978b89c \\\n --hash=sha256:527a12d0c2f4d15f72b275b6f4561ae92af76dd59b4624796fddd45867f13c33 \\\n --hash=sha256:5786a29e286f2cc3cbda13a357fd9a4dd5bf1d7448a9d3d842b26b4f784a3a86 \\\n --hash=sha256:59915aec9fd2b845708a76ddc6c0639cfc99b6e2811854ea2425ee7552aff0e9 \\\n --hash=sha256:721b058064150fc1c6d88e277af093d1b4f8bb7a59546fe9969d9ff7dbe3f6fd \\\n --hash=sha256:866cad0d04a7de1aaa3c5cbef203f9d3feef9655972dcccc3283d60122db743b \\\n --hash=sha256:88fcf2bfbb53309531a850af50d2ea75874099b19d4159625d0b4f88c53494b9 \\\n --hash=sha256:8c0c29a2089ff9011d6c3abccd272f3ee6d0e166dae9e5232099fd83d26104d9 \\\n --hash=sha256:9c457a84cfbe2019ba301e14edd3e1c950472abd0b87fc77622ab3fc475ba012 \\\n --hash=sha256:9d2952a1e74c7027347c74cee1cb2be09121a5290db38498b8b17ff585f73748 \\\n --hash=sha256:a51006c7574e819308d92a3452b22d5bd45ef8593a4983b5856aa7cb8220885f \\\n --hash=sha256:b1af81e57d098b21b28f42ec756f0e26dce2341d59ba4e4f11759bc3ca2c0a99 \\\n --hash=sha256:e077dcac19e564cae8b4223b7807c2f617a59938f8142ca77fc6348ae9c6d0aa \\\n --hash=sha256:f28e70baadfebe71dcc2d9505059b988d75e903fc62258b102eb87dc4b6994a3\n # via -r uv-requirements-0.7.13.in (contents of `uv==0.7.13`)\n

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/.gitignore RENAMED Viewed

File without changes

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/.python-version RENAMED Viewed

File without changes

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/CHANGELOG.md RENAMED Viewed

File without changes

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/Dockerfile RENAMED Viewed

File without changes

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/LICENSE RENAMED Viewed

File without changes

{awslabs_ccapi_mcp_server-1.0.1 → awslabs_ccapi_mcp_server-1.0.4}/NOTICE RENAMED Viewed

File without changes