Amazon ECS MCP Server

by AWS Labs

Vendor-built ECS MCP server covering the full container deployment lifecycle: containerize, push to ECR, deploy via ECS Express Mode with ALB, troubleshoot. Notable for ALLOW_WRITE and ALLOW_SENSITIVE_DATA environment flags that make read-only mode a configuration default.

★ 8,894·8 tools·Released DEC 2024·Apache-2.0

uvx awslabs.ecs-mcp-server@latest

“The Amazon ECS MCP server is the most capable container deployment server currently shipping. It covers the full lifecycle: containerizing an application, building and pushing to ECR, deploying via ECS Express Mode with Application Load Balancer integration, and tearing it all back down with one tool call. The standout feature is ALLOW_WRITE=false and ALLOW_SENSITIVE_DATA=false as first-class environment flags, which keep the server in monitoring-only mode against a production cluster while restricting the agent to list and describe operations. Most cloud MCPs treat the read/write distinction as an afterthought; AWS Labs treats it as a configuration boundary, and that earns it the editorial pick for production-adjacent ECS work.”
Reviewed by M. Nouriel · APR 2026

// Connect

INSTALL THIS SERVER

Requires authenticationAWS profile via AWS_PROFILE environment variable

{
  "mcpServers": {
    "awslabs.ecs-mcp-server": {
      "command": "uvx",
      "args": [
        "awslabs.ecs-mcp-server@latest"
      ],
      "env": {
        "AWS_PROFILE": "your-aws-profile",
        "AWS_REGION": "us-east-1",
        "FASTMCP_LOG_LEVEL": "ERROR"
      }
    }
  }
}

PrereqmacOS path: ~/Library/Application Support/Claude/claude_desktop_config.json. Requires uvx (install via `uv tool install awslabs.mcp`) and AWS CLI credentials.

{
  "mcpServers": {
    "awslabs.ecs-mcp-server": {
      "command": "uvx",
      "args": [
        "awslabs.ecs-mcp-server@latest"
      ],
      "env": {
        "AWS_PROFILE": "your-aws-profile",
        "AWS_REGION": "us-east-1",
        "FASTMCP_LOG_LEVEL": "ERROR"
      }
    }
  }
}

{
  "mcpServers": {
    "awslabs.ecs-mcp-server": {
      "command": "uvx",
      "args": [
        "awslabs.ecs-mcp-server@latest"
      ],
      "env": {
        "AWS_PROFILE": "your-aws-profile",
        "AWS_REGION": "us-east-1",
        "FASTMCP_LOG_LEVEL": "ERROR"
      }
    }
  }
}

{
  "mcpServers": {
    "awslabs.ecs-mcp-server": {
      "command": "uvx",
      "args": [
        "awslabs.ecs-mcp-server@latest"
      ],
      "env": {
        "AWS_PROFILE": "your-aws-profile",
        "AWS_REGION": "us-east-1",
        "FASTMCP_LOG_LEVEL": "ERROR"
      }
    }
  }
}

{
  "mcpServers": {
    "awslabs.ecs-mcp-server": {
      "command": "uvx",
      "args": [
        "awslabs.ecs-mcp-server@latest"
      ],
      "env": {
        "AWS_PROFILE": "your-aws-profile",
        "AWS_REGION": "us-east-1",
        "FASTMCP_LOG_LEVEL": "ERROR"
      }
    }
  }
}

// Tools

8 TOOLS AVAILABLE

containerize_app

Generate container configs for a web application

Write

build_and_push_image_to_ecr

Build Docker image and push to a new ECR repository

Write

validate_ecs_express_mode_prerequisites

Verify IAM roles and images required for Express Mode deploy

Read

ecs_resource_management

List, describe, create, update, delete ECS clusters, services, tasks

Admin

wait_for_service_ready

Poll service readiness during deployment

Read

delete_app

Delete an Express Mode deployment and its ECR infrastructure

Admin

// Editorial Review

OUR ASSESSMENT

Strengths

ALLOW_WRITE and ALLOW_SENSITIVE_DATA environment flags treat the read/write boundary as a configuration default.
Full lifecycle coverage: containerize, ECR push, ECS Express Mode deploy with ALB, auto-scaling, circuit-breaker rollback, cleanup.
Integrated AWS Knowledge MCP proxy gives the agent up-to-date AWS documentation context, including ECS features released after the model's training cutoff.
AWS-managed hosted version available alongside the local server, with IAM integration and CloudTrail audit logging.

Weaknesses

Currently positioned for development and prototyping by AWS themselves; production use requires careful IAM scoping with the read-only flags set.
Local install path requires uv package manager plus Docker or Finch; setup overhead exceeds a typical npx server.
Express Mode is opinionated about infrastructure shape; teams with custom ALB or networking patterns will hit constraints.

Security Notes

ALLOW_WRITE and ALLOW_SENSITIVE_DATA environment variables gate destructive operations and information disclosure. Read-only mode covers list and describe operations across clusters, services, tasks, and task definitions. Production guidance from AWS recommends scoping IAM policies tightly and keeping both flags at false. Credentials inherit from the local AWS profile via the AWS_PROFILE environment variable; the MCP config holds zero long-lived secrets.

Best For

ECS-heavy teams who want an agent that can stand up a containerized service end-to-end. Most useful in dev and staging; safe in production with read-only flags set.

// Technical

TECHNICAL DETAILS

Language

python

Transport

stdio

Clients

Claude DesktopClaude CodeCursorVS CodeWindsurf

License

Apache-2.0

GitHub

awslabs/mcp · ★ 8,894

npm

awslabs.ecs-mcp-server

Last Release

1.0.5APR 22, 2026

First Released

DEC 4, 2024

// Adoption

ADOPTION METRICS

// GitHub Stars

8,894

// Reading thisThe 8.9k star count covers the whole awslabs/mcp monorepo, of which the ECS server is one of 50+ included servers. Star traction reflects AWS Labs as a publisher, with the ECS server itself benefiting from that umbrella signal.

// Popularity Rank

#18

Globally · #4 in Cloud

// Reading thisIn the top 5 of vendor-built cloud MCPs by feature coverage. The lifecycle scope (containerize through teardown) puts it ahead of single-purpose ECS tools.

// How we found this server

SOURCES & VERIFICATION

We don't take any single directory's word for it. Before scoring, we cross-reference 4 public MCP sources, install the server ourselves against the clients we cover, and record when we last re-verified.

Discovered

Manual submission

First indexed APR 28, 2026

Cross-referenced

4 directories

PulseMCP, Official MCP Registry, Awesome MCP Servers, Smithery

Verified against

Claude Desktop, Cursor, VS Code

Installed and tested across clients

Last re-checked

APR 28, 2026

Weekly re-verification

// How other directories see it

The same server, 4 different lenses. We reconcile these signals into our editorial score, which is why our number sometimes diverges from a directory-aggregate star count.

Source	Their rating	Their star count	Their downloads	Last synced
AutomationSwitch This page	4.2editorial	8,894	—	APR 28, 2026
PulseMCP	— unrated	unavailable	unavailable	APR 28, 2026
Official MCP Registry	— unrated	unavailable	unavailable	APR 28, 2026
Awesome MCP Servers	— unrated	unavailable	unavailable	APR 28, 2026
Smithery	— unrated	unavailable	unavailable	APR 28, 2026

// Counts are directory-reported; we don't adjust them. Discrepancies usually come from different snapshot times or star-caching.

// Alternatives

OTHER CLOUD MCP SERVERS

Vendor4.5

AWS API MCP Server

AWS Labs

The official AWS Labs catch-all server. Bridges any AWS CLI command to MCP, giving agents universal access to the AWS API surface. Helps the agent select the right CLI command for a task; respects the local AWS credential chain.

2 tools★ 8,894

Vendor4.5

Cloudflare MCP

Cloudflare

Cloudflare's MCP offering: 14 hosted remote MCP servers segmented by product surface (Workers Bindings, Observability, Radar, Browser Rendering, Logpush, AI Gateway, Audit Logs, DNS Analytics, DEX, CASB, GraphQL, Docs, Container, Builds) plus a Code Mode server for broader API access. All authenticate via OAuth.

0 tools★ 3,665

Vendor4

Amazon EKS MCP Server

AWS Labs

AWS Labs server for Amazon EKS covering cluster creation via CloudFormation, full Kubernetes resource lifecycle, log retrieval, event fetching, and troubleshooting. Read-only and write IAM policies documented separately for scoped credential setup.

7 tools★ 8,894

Vendor4

Vercel

Deployment layer for managing Vercel projects, deployments, environment variables, and domains. Deploy, promote, rollback, and inspect from your agent context.

16 tools★ 2,400

// Get in touch

DISCUSS YOUR
MCP REQUIREMENTS.

Evaluating a server, scoping an internal deployment, or working out whether MCP is the right fit at all. Start the conversation and we will point you at the right piece of the ecosystem.

Discuss Your MCP Requirements →