aws / agent-toolkit-for-aws
AWS / Agent-Toolkit-for-AWS
Agent Toolkit for AWS Help AI coding agents build, deploy, and manage applications on AWS. The Agent Toolkit for AWS gives AI coding agents the tools, knowledge, and guardrails they need to work with AWS services. It works with the coding agents developers already use — including Claude Code, Codex, Cursor, and Kiro.
AWS Agent Toolkit 旨在帮助 AI 编程助手在 AWS 上构建、部署和管理应用程序。该工具包为 AI 编程助手提供了与 AWS 服务交互所需的工具、知识和安全护栏。它兼容开发者目前常用的编程助手,包括 Claude Code、Codex、Cursor 和 Kiro。
Quick start: Claude Code
快速入门:Claude Code
The plugins are available on the official Anthropic marketplace (claude-plugins-official) which is added to your Claude Code installation by default. Use the following commands to install supported plugins from the toolkit:
这些插件可在 Anthropic 官方市场(claude-plugins-official)中获取,该市场默认已添加到您的 Claude Code 安装中。请使用以下命令安装工具包中支持的插件:
For aws-core (covers service selection, CDK/CloudFormation, serverless, containers, storage, observability, billing, SDK usage, and deployment):
针对 aws-core(涵盖服务选择、CDK/CloudFormation、无服务器架构、容器、存储、可观测性、计费、SDK 使用及部署):
/plugin install aws-core@claude-plugins-official
Tip: If you get “Plugin not found”, update your local marketplace index first:
提示:如果提示“Plugin not found”,请先更新本地市场索引:
/plugin marketplace update claude-plugins-official
For aws-agents (covers building AI agents on AWS with Amazon Bedrock and AgentCore):
针对 aws-agents(涵盖使用 Amazon Bedrock 和 AgentCore 在 AWS 上构建 AI 智能体):
/plugin install aws-agents@claude-plugins-official
For aws-data-analytics (covers data lake, analytics, and ETL workflows with S3 Tables, AWS Glue, and Athena):
针对 aws-data-analytics(涵盖使用 S3 Tables、AWS Glue 和 Athena 进行数据湖、分析及 ETL 工作流):
/plugin install aws-data-analytics@claude-plugins-official
For aws-agents-for-devsecops (used to investigate incidents, review code, execute UAT for release readiness, scan code for vulnerabilities, and run penetration tests with AWS DevOps Agent and AWS Security Agent):
针对 aws-agents-for-devsecops(用于调查事故、审查代码、执行 UAT 以准备发布、扫描代码漏洞,以及使用 AWS DevOps Agent 和 AWS Security Agent 进行渗透测试):
/plugin marketplace add aws/agent-toolkit-for-aws
/plugin install aws-agents-for-devsecops
/reload-plugins
# Or from Claude's official marketplace:
# 或者从 Claude 官方市场安装:
/plugin install aws-agents-for-devsecops@claude-plugins-official
/reload-plugins
# Setup:
# 设置:
/aws-agents-for-devsecops:setupCodex
Codex
In your terminal:
在终端中执行:
codex plugin marketplace add aws/agent-toolkit-for-aws
Then launch Codex and run /plugins to browse and install the aws-core plugin.
然后启动 Codex 并运行 /plugins 来浏览并安装 aws-core 插件。
Cursor
Cursor
Add this repository as a team marketplace from Settings → Plugins → Team Marketplaces → Add Marketplace → Import from Repo, pointing it at aws/agent-toolkit-for-aws. Cursor indexes the plugins listed in .cursor-plugin/marketplace.json on import. Then open the Plugins panel and install the aws-core plugin (start here), or aws-agents and aws-data-analytics as needed. Each plugin bundles the AWS MCP Server configuration and agent skills.
通过 Settings → Plugins → Team Marketplaces → Add Marketplace → Import from Repo 将此仓库添加为团队市场,并指向 aws/agent-toolkit-for-aws。Cursor 在导入时会索引 .cursor-plugin/marketplace.json 中列出的插件。随后打开插件面板并安装 aws-core 插件(建议从此处开始),或根据需要安装 aws-agents 和 aws-data-analytics。每个插件都集成了 AWS MCP Server 配置和智能体技能。
Kiro
Kiro
Add the AWS MCP Server to your Kiro MCP configuration (.kiro/settings/mcp.json):
将 AWS MCP Server 添加到您的 Kiro MCP 配置 (.kiro/settings/mcp.json) 中:
{
"mcpServers": {
"aws": {
"command": "uvx",
"args": [
"mcp-proxy-for-aws@1.6.2",
"https://aws-mcp.us-east-1.api.aws/mcp",
"--metadata", "AWS_REGION=us-west-2"
]
}
}
}Note: It is recommended to pin to a specific version (e.g., @1.6.2) to ensure reproducible behavior and protect against supply chain risks. We recommend regularly checking PyPI for new stable versions and updating accordingly. 注意:建议锁定特定版本(例如 @1.6.2)以确保行为的可复现性并防范供应链风险。我们建议定期检查 PyPI 以获取新的稳定版本并进行相应更新。
Then install skills from this repository:
然后从该仓库安装技能:
npx skills add aws/agent-toolkit-for-aws/skills
Prerequisites: You need uv installed. An AWS account with credentials configured locally is required for API calls and script execution, but not for documentation search or skill discovery. See the user guide for detailed setup instructions.
先决条件: 您需要安装 uv。进行 API 调用和脚本执行需要本地配置凭证的 AWS 账户,但文档搜索或技能发现无需此操作。详细设置说明请参阅用户指南。
What’s included
包含内容
Plugins
插件
Plugins bundle the AWS MCP Server configuration and agent skills into a single install for your coding agent. 插件将 AWS MCP Server 配置和智能体技能打包,供您的编程助手一次性安装。
| Plugin | Description |
|---|---|
| aws-core | Core AWS skills and MCP Server configuration. Covers service selection, CDK/CloudFormation, serverless, containers, storage, observability, billing, SDK usage, and deployment. Start here. |
| aws-agents | Skills for building AI agents on AWS with Amazon Bedrock and AgentCore. |
| aws-data-analytics | Skills for data lake, analytics, and ETL workflows with S3 Tables, AWS Glue, and Athena. |
| aws-agents-for-devsecops | Investigate incidents, review code and execute UAT for release readiness, scan code for vulnerabilities, and run penetration tests with AWS DevOps Agent and AWS Security Agent. |
| 插件 | 描述 |
|---|---|
| aws-core | 核心 AWS 技能及 MCP Server 配置。涵盖服务选择、CDK/CloudFormation、无服务器架构、容器、存储、可观测性、计费、SDK 使用及部署。建议从此处开始。 |
| aws-agents | 使用 Amazon Bedrock 和 AgentCore 在 AWS 上构建 AI 智能体的技能。 |
| aws-data-analytics | 使用 S3 Tables、AWS Glue 和 Athena 进行数据湖、分析及 ETL 工作流的技能。 |
| aws-agents-for-devsecops | 使用 AWS DevOps Agent 和 AWS Security Agent 调查事故、审查代码、执行 UAT 以准备发布、扫描代码漏洞及进行渗透测试。 |
Plugins are currently available for Claude Code, Codex, and Cursor. For other agents, configure the AWS MCP Server directly and install skills from this repository. 插件目前适用于 Claude Code、Codex 和 Cursor。对于其他智能体,请直接配置 AWS MCP Server 并从本仓库安装技能。
Skills
技能
Agent skills are curated packages of instructions and reference materials that help agents complete specific AWS tasks. Skills are loaded on demand — agents discover and retrieve only what’s relevant to the current task. 智能体技能是经过精心策划的指令和参考资料包,旨在帮助智能体完成特定的 AWS 任务。技能按需加载——智能体仅发现并检索与当前任务相关的内容。
npx skills add aws/agent-toolkit-for-aws/skills
Browse the skills/ directory to see all available skills.
浏览 skills/ 目录以查看所有可用技能。
Rules files
规则文件
Recommended project-level configuration files that tell agents how to use AWS most effectively — for example, by using the AWS MCP Server, discovering available skills, or searching documentation before acting. See rules/ for details.
推荐的项目级配置文件,用于指导智能体如何最有效地使用 AWS——例如,通过使用 AWS MCP Server、发现可用技能或在采取行动前搜索文档。详情请参阅 rules/。
AWS MCP Server
AWS MCP Server
The AWS MCP Server is a managed server that gives agents access to AWS through the Model Context Protocol. It provides: AWS MCP Server 是一个托管服务器,通过模型上下文协议 (MCP) 为智能体提供 AWS 访问权限。它提供:
- Full AWS API coverage — Interact with any of the 300+ AWS services through a single authenticated endpoint. 全面的 AWS API 覆盖 — 通过单个经过身份验证的端点与 300 多种 AWS 服务中的任何一种进行交互。
- Sandboxed script execution — Agents can run Python scripts in an isolated environment for complex multi-step operations. 沙盒脚本执行 — 智能体可以在隔离环境中运行 Python 脚本,以执行复杂的多步操作。
- Real-time documentation access — Search and retrieve current AWS documentation, API references, and service capabilities without authentication. 实时文档访问 — 无需身份验证即可搜索和检索最新的 AWS 文档、API 参考和服务功能。
- Enterprise controls — Amazon CloudWatch metrics, IAM context keys for agent-specific policies, and AWS CloudTrail audit logging. 企业级控制 — Amazon CloudWatch 指标、用于智能体特定策略的 IAM 上下文键以及 AWS CloudTrail 审计日志。
For details on operation, available tools, authentication, and supported Regions, see the AWS MCP Server documentation. 有关操作、可用工具、身份验证和支持区域的详细信息,请参阅 AWS MCP Server 文档。