awslabs.amazon-kendra-index-mcp-server

v1.0.18 safe
4.0
Medium Risk

An AWS Labs Model Context Protocol (MCP) server for amazon-kendra-index-mcp-server

🤖 AI Analysis

Final verdict: SAFE

The package appears safe based on low network and shell risks, and legitimate credential retrieval practices. The metadata suggests a possibly new developer but does not raise significant red flags.

  • No network calls detected
  • No shell execution patterns
  • Environment variable retrieval for AWS credentials
Per-check LLM notes
  • Network: No network calls detected, which is normal for packages that do not require external communications.
  • Shell: No shell execution patterns detected, indicating the package does not execute system commands, which is expected for most Python libraries.
  • Obfuscation: The detected pattern is a standard way to extend the package path and does not indicate malicious obfuscation.
  • Credentials: The code is retrieving environment variables for AWS credentials which is a common practice for interacting with AWS services, indicating legitimate usage rather than credential harvesting.
  • Metadata: The author has only one package on PyPI, which may indicate a new or less active account.

📦 Package Quality Overall: Medium (5.8/10)

✦ High Test Suite 9.0

Test suite present — 3 test file(s) found

  • Test runner config found: pyproject.toml
  • 3 test file(s) detected (e.g. test_init.py)
◈ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "docs" -> https://awslabs.github.io/mcp/servers/amazon-kendra-index-mc
  • Detailed PyPI description (7615 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
○ Low Type Annotations 1.0

No type annotations detected

  • No type annotations, py.typed marker, or stub files detected
✦ High Multiple Contributors 10.0

Active multi-contributor project

  • 42 unique contributor(s) across 100 commits in awslabs/mcp
  • Active community — 5 or more distinct contributors

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

  • amespace packages. __path__ = __import__('pkgutil').extend_path(__path__, __name__) # Copyright Amazon.com, In
Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting score 10.0

Found 4 credential access pattern(s)

  • 'region': region or os.environ.get('AWS_REGION', 'us-east-1'), 'count': len(indexes),
  • : str(e), 'region': region or os.environ.get('AWS_REGION', 'us-east-1')} @mcp.tool(name='KendraQueryTool') a
  • or profile AWS_PROFILE = os.environ.get('AWS_PROFILE') AWS_REGION = region or os.environ.get('AWS_REG
  • ') AWS_REGION = region or os.environ.get('AWS_REGION', 'us-east-1') if AWS_PROFILE: kendra_cli
Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: users.noreply.github.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository awslabs/mcp appears legitimate

Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "Amazon Web Services" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with awslabs.amazon-kendra-index-mcp-server 
Create a knowledge management system using the 'awslabs.amazon-kendra-index-mcp-server' package. This system will serve as a powerful tool for businesses looking to manage their internal documents and data more effectively. The application should allow users to upload various types of files (e.g., PDFs, Word documents, Excel spreadsheets) into a designated AWS Kendra index via the MCP server. Additionally, it should provide a search interface where users can query the indexed content and receive relevant document excerpts as responses.

Key Features:
1. File Upload Interface: Users should be able to select multiple files from their local device and upload them directly into the Kendra index through the MCP server.
2. Document Indexing: The uploaded files should be automatically processed and indexed by AWS Kendra using the MCP server for context-aware information retrieval.
3. Search Functionality: Implement a user-friendly search bar where users can enter queries related to the content within the indexed documents. The application should then return precise excerpts from relevant documents that match the search criteria.
4. User Authentication: Integrate basic authentication to ensure only authorized users can access and modify the content within the Kendra index.
5. Real-time Notifications: Upon successful indexing or when new documents are added, notify users via email about updates to the indexed content.
6. Analytics Dashboard: Provide insights into usage patterns such as most searched terms, popular documents, etc., to help improve future document uploads and content management practices.

How to Utilize 'awslabs.amazon-kendra-index-mcp-server':
- Use the MCP server to handle the context-aware processing and indexing of uploaded documents. Ensure that the MCP server is correctly configured to connect with your AWS Kendra index.
- Leverage the package's capabilities to enhance the relevance of search results by incorporating semantic understanding and contextual awareness.
- Explore additional functionalities provided by the package to further enrich the user experience, such as advanced filtering options or custom metadata handling.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!