Package Metadata

Author: Amazon Web Services
Email: AWSLabs MCP <[email protected]>, Erben Mo <[email protected]>
PyPI: awslabs.dynamodb-mcp-server
Python: >=3.10
Versions: 39 releases
First release: 15 May 2025, 19:33 UTC
Analysed: 08 Jun 2026, 14:40 UTC
Source files: 61 .py files scanned

Project Links

changelog docs documentation homepage repository

Classifiers

License :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13

🤖 AI Analysis

Final verdict: SAFE

The package appears legitimate, serving as a developer tool for working with Amazon DynamoDB. While there are some potential risks, they are within expected parameters for such a package.

Moderate network and shell execution risks
Standard credential and obfuscation handling
No significant metadata red flags

Per-check LLM notes

Network: Network calls are used to download a local DynamoDB server, which is expected behavior for a package managing a DynamoDB local instance.
Shell: Shell executions likely serve to manage the local DynamoDB server, but require careful review due to potential risks associated with executing commands locally.
Obfuscation: The observed obfuscation patterns appear to be standard practices for extending Python package paths and configuring Jinja2 templates, indicating legitimate use rather than malicious intent.
Credentials: The detected patterns for handling AWS credentials seem to follow common practices for retrieving environment variables or default values, which is typical for applications interacting with AWS services, but still requires scrutiny to ensure proper usage and security.
Metadata: The author has only one package on PyPI, which may indicate a new or less active account, but no other red flags are present.

📦 Package Quality Overall: Medium (6.6/10)

✦ High Test Suite 9.0

Test suite present — 39 test file(s) found

Test runner config found: conftest.py
Test runner config found: conftest.py
Test runner config found: conftest.py
39 test file(s) detected (e.g. __init__.py)

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "docs" -> https://awslabs.github.io/mcp/servers/dynamodb-mcp-server/
Detailed PyPI description (22145 chars)

○ Low Contributing Guide 2.0

No contributing guide or governance files found

No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found

◈ Medium Type Annotations 5.0

Partial type annotation coverage

124 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

42 unique contributor(s) across 100 commits in awslabs/mcp
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

⚠ Outbound Network Calls score 6.0

Found 4 network call pattern(s)

oad with timeout with urllib.request.urlopen( # nosec B310 DynamoDBLocalConfig.DOWNL
_makedirs, patch('urllib.request.urlopen') as mock_urlopen, patch('tarfile.open')
akedirs'), patch('urllib.request.urlopen') as mock_urlopen, patch('shutil.rmtree'
akedirs'), patch('urllib.request.urlopen') as mock_urlopen, patch('tarfile.open')

⚠ Code Obfuscation score 6.0

Found 3 obfuscation pattern(s)

amespace packages. __path__ = __import__('pkgutil').extend_path(__path__, __name__) # Copyright Amazon.com, In
generator.jinja_env = __import__('jinja2').Environment( loader=__import__('jinja2').FileSy
vironment( loader=__import__('jinja2').FileSystemLoader(str(empty_templates)) ) d

⚠ Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

None try: return subprocess.run( cmd, check=True, timeout=timeout, capture_outpu
t {port}') process = subprocess.Popen(cmd, stdout=subprocess.DEVNULL, stderr=subprocess.PIPE)
""" try: subprocess.run( # nosec B603, B607 - user local env, hardcoded cmd, no she
version_cmd) result = subprocess.run( # nosec B603, B607 - user local env, hardcoded cmd, no she
command(cmd) result = subprocess.run(cmd, timeout=LINTER_EXECUTION_TIMEOUT) # nosec B603, B607 -
mmand(format_cmd) subprocess.run(format_cmd, timeout=LINTER_EXECUTION_TIMEOUT) # nosec B603,

⚠ Credential Harvesting score 10.0

Found 6 credential access pattern(s)

'region_name': os.environ.get('AWS_REGION', DynamoDBClientConfig.DEFAULT_REGION), }
viron['AWS_DEFAULT_REGION'] = os.environ.get( 'AWS_REGION', DynamoDBClientConfig.DEFAULT_REGION )
: kwargs.get('aws_region') or os.getenv('AWS_REGION'), 'hostname': hostname, 'por
al attempts (e.g., ../../../../etc/passwd) are blocked Args: schema_path: Absolute path
ath_within_directory('../../../etc/passwd', tmpdir, 'test file') # Test 5: Path traversa
lidate_path_within_directory('/etc/passwd', tmpdir, 'test file') # Test 6: Custom error

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: amazon.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository awslabs/mcp appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Amazon Web Services" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with awslabs.dynamodb-mcp-server

Create a fully-functional mini-application called 'DynamoDB Backup Manager' using the Python package 'awslabs.dynamodb-mcp-server'. This application will allow users to backup their AWS DynamoDB tables to a local file system and restore them when needed. Here’s a detailed breakdown of the application's functionalities:

1. **User Interface**: Design a simple command-line interface (CLI) for easy interaction.
2. **Backup Functionality**: Implement a feature that allows users to select one or multiple DynamoDB tables to back up. The data from these tables should be saved into a local JSON file on the user's machine.
3. **Restore Functionality**: Provide an option for users to restore data from a previously backed-up JSON file to their DynamoDB table(s).
4. **Scheduling**: Allow users to schedule regular backups at specified intervals (e.g., daily, weekly).
5. **Version Control**: Ensure that each backup has a unique timestamped version identifier so that users can restore specific versions if needed.
6. **Error Handling**: Implement robust error handling to manage issues like network failures, missing files, etc.
7. **Security**: Encrypt the backed-up data before saving it locally and decrypt it upon restoration.
8. **Logging**: Maintain logs of all backup and restore operations for auditing purposes.

The 'awslabs.dynamodb-mcp-server' package will be crucial for establishing the connection to the DynamoDB service, fetching data from tables, and handling any server-related tasks during the backup and restore processes. Make sure to document the code thoroughly and include setup instructions for new users.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (6.6/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue