Package Metadata

Author: Amazon Web Services
Email: AWSLabs MCP <[email protected]>, Lakshmi Sabari Priya Jaini <[email protected]>
PyPI: awslabs.security-agent-mcp-server
Python: >=3.10
Versions: 1 release
First release: 02 Jun 2026, 23:25 UTC
Analysed: 08 Jun 2026, 14:55 UTC
Source files: 17 .py files scanned

Project Links

changelog docs documentation homepage repository

Classifiers

License :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13

🤖 AI Analysis

Final verdict: SAFE

The package appears safe with low risks across all categories except credential risk, which is moderately high due to potential improper handling of environment variables.

No network or shell execution risks detected.
Moderate credential risk due to reading of AWS environment variables.

Per-check LLM notes

Network: No network calls detected, which is normal for packages that do not require external communications.
Shell: No shell execution patterns detected, indicating the package does not execute system commands.
Obfuscation: The use of extend_path is a common practice for extending module search paths and does not inherently indicate malicious activity.
Credentials: Reading environment variables like AWS_REGION is standard practice for configuring AWS clients but should be reviewed to ensure proper handling and absence of hard-coded secrets.
Metadata: The package is from a new maintainer with limited history, but the maintainer is from a reputable organization.

📦 Package Quality Overall: Medium (6.6/10)

✦ High Test Suite 9.0

Test suite present — 9 test file(s) found

Test runner config found: conftest.py
Test runner config found: pyproject.toml
9 test file(s) detected (e.g. __init__.py)

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "docs" -> https://awslabs.github.io/mcp/servers/security-agent-mcp-ser
Detailed PyPI description (6473 chars)

○ Low Contributing Guide 2.0

No contributing guide or governance files found

No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found

◈ Medium Type Annotations 5.0

Partial type annotation coverage

39 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

42 unique contributor(s) across 100 commits in awslabs/mcp
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

amespace packages. __path__ = __import__('pkgutil').extend_path(__path__, __name__) # Copyright Amazon.com, In

✓ Shell / Subprocess Execution

No shell execution patterns detected

⚠ Credential Harvesting score 2.5

Found 1 credential access pattern(s)

itialize components _region = os.environ.get('AWS_REGION', DEFAULT_REGION) _client = SecurityAgentClient(regi

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: amazon.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository awslabs/mcp appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Only one version has ever been released — brand new package
Author "Amazon Web Services" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with awslabs.security-agent-mcp-server

Create a Python-based utility named 'SecurityGuard' that leverages the 'awslabs.security-agent-mcp-server' package to automate security assessments and remediations for AWS resources. This utility will serve as a bridge between the AWS Security Agent and your local environment, enabling you to schedule security scans on-demand and receive real-time alerts for any detected vulnerabilities or misconfigurations.

Step 1: Set up the initial project structure and install necessary dependencies including 'awslabs.security-agent-mcp-server'.
Step 2: Develop a command-line interface (CLI) that allows users to specify which AWS resources they want to scan and the types of security checks to perform.
Step 3: Implement functionality to start security scans based on user inputs and to interact with the AWS Security Agent through the MCP server provided by 'awslabs.security-agent-mcp-server'.
Step 4: Integrate a notification system that sends email alerts to administrators when security issues are found during the scans.
Step 5: Add a feature to automatically apply predefined remediation scripts to fix common security issues detected by the scans.
Step 6: Ensure that the utility logs all actions performed and results obtained from the scans for audit purposes.

Suggested Features:
- Support for multiple AWS regions and accounts
- Ability to customize security check configurations
- Historical data storage for trend analysis
- Integration with popular alerting services like Slack or PagerDuty

How 'awslabs.security-agent-mcp-server' is Utilized:
The package will be used to establish a connection between your utility and the AWS Security Agent, allowing it to send commands for initiating security scans and receiving results back. It will handle the communication protocol details, making it easier to focus on building the application logic around scheduling, notifications, and automation.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (6.6/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue