AWS Just Made Its MCP Server Generally Available. Here's What It Actually Gives AI Agents.

The dirty secret of AI coding agents working on AWS has always been the credential problem: give the agent too much access and you've handed over the keys; give it too little and it's useless.

AWS just shipped its answer.

The Problem It's Solving

AI coding agents working with AWS have two compounding failure modes. First, their training data goes stale fast. Without access to current AWS documentation, agents rely on training data that may be months out of date and may not know about services like Amazon S3 Vectors, Amazon Aurora DSQL, or Amazon Bedrock AgentCore. Second, when they do reach for AWS tooling, their instincts are wrong: they tend to reach for the AWS CLI rather than AWS CDK or CloudFormation, and they produce IAM policies that are far broader than necessary. The result is infrastructure that clears a demo and breaks in production.

The deeper issue is structural. Before this release, connecting an AI agent to AWS meant either injecting broad credentials into a prompt context — a governance nightmare — or building custom middleware that quickly becomes a maintenance burden. Neither solution scales in an enterprise setting where audit trails and least-privilege access aren't optional.