Delv
Official (Vendor)Active· 6d4.3by AWS

AWS DynamoDB

AWS Labs' DynamoDB MCP. Data modelling, validation, cost analysis, code generation against your DynamoDB tables.

View repo Homepage
A
Safety & Trust

Delv Safety Grade: A

Score 84/100 · assessed 2026-04-28

Maintainer95
Permissions72
Supply chain85
Transparency88
Incidents100

AWS Labs' official DynamoDB MCP server is a well-maintained tool from a tier-one cloud vendor. It provides schema design assistance, cost analysis, and code generation for DynamoDB tables. The maintainer score is excellent given AWS's resources and track record. Permissions are moderately scoped: it requires AWS credentials via environment variables and can read/write to your DynamoDB tables, plus generate code snippets. The supply chain is solid with PyPI distribution via uvx, though it's part of a monorepo rather than a standalone package. Transparency is good with open source code, documentation, and clear AWS Labs branding. No known security incidents. The main risk is that it holds write access to production DynamoDB tables if you point it at a production AWS profile, so credential scoping is essential. Overall, this is a trustworthy tool for DynamoDB development workflows, provided you use appropriate AWS IAM boundaries.

Lethal Trifecta (prompt-injection exposure)

ONE OF THREE
Private dataYes
Reads secrets, credentials, private files
Untrusted inputNo
Ingests web pages, PRs, issues, emails
External commsNo
Can send data outbound

Same.

Green flags

  • Official AWS Labs project with institutional backing
  • Open source with clear documentation at awslabs.github.io/mcp
  • Distributed via PyPI with standard uvx installation
  • Focused on design-time analysis rather than runtime automation
  • Cost estimation helps prevent expensive mistakes

Red flags

  • Requires AWS credentials with DynamoDB read/write access
  • Could modify production tables if pointed at wrong AWS_PROFILE
  • Part of monorepo rather than standalone versioned package
  • No explicit mention of IAM policy scoping in install docs

Permissions requested

DB readDB writeRead envOutbound network
Assessed by Delv Editorial using public metadata. Grades are advisory and update as the ecosystem changes. They do not replace your own review of permissions and code before granting an agent access to sensitive systems.

Install

uvx awslabs.dynamodb-mcp-server@latest
Env vars needed: AWS_REGIONAWS_PROFILE

Review

This is AWS Labs' official MCP server for DynamoDB, and it does something genuinely useful: it helps you design and validate single-table models before you write a line of application code. You point it at your AWS account, describe what you're building in natural language, and it suggests partition key strategies, GSI layouts, and access patterns. It also estimates read and write costs based on your expected query load, which is the sort of thing you normally discover too late. I've used it to prototype a multi-tenant SaaS table where I needed to support queries by tenant, by user, and by date range. The server suggested a composite sort key pattern I hadn't considered, then generated the Python boto3 code to implement it. The cost analysis showed me that one of my GSIs would burn through provisioned capacity faster than I'd budgeted, so I reworked the design before deploying anything. That's the workflow where this shines: early-stage schema design when you're still figuring out access patterns. It's less useful once your table is live and you're just doing CRUD. The code generation is boilerplate, not production-ready. You'll still need to add error handling, retries, and all the usual AWS SDK ceremony. The validation tools assume you're following single-table design principles; if you're using DynamoDB as a glorified key-value store, most of the advice won't apply. Setup requires AWS credentials with DynamoDB read permissions. It doesn't create or modify tables, just reads metadata and generates suggestions. The server is Python-based, installed via uvx, and works best in Claude Desktop where the conversation flow feels natural. I wouldn't bother with this if you're already comfortable with single-table design or if you're using a different database. But if you're new to DynamoDB's quirks or need to justify a schema to stakeholders with cost estimates, it's worth the ten-minute setup.
Verdict

Install this if you're designing a new DynamoDB table and want to validate your schema before you commit. Skip it if you're already fluent in single-table patterns or if you're just doing simple key-value lookups. The cost analysis alone justifies the setup time.

Good at

  • Cost estimation before you deploy saves you from expensive mistakes in production.
  • Single-table design suggestions are specific and include reasoning, not just generic advice.
  • Code generation covers common boto3 patterns, which speeds up prototyping even if you rewrite it later.
  • Official AWS Labs project means it's maintained and follows current DynamoDB best practices.

Watch out

  • Only useful if you're actually using DynamoDB; no value for other databases.
  • Generated code is boilerplate and needs significant work before it's production-ready.
  • Requires AWS credentials and IAM permissions, which adds friction if you're just experimenting.
  • Less helpful once your schema is live; this is a design-time tool, not a runtime query assistant.

Use cases

  • Designing a single-table model from a brief
  • Estimating read/write costs before launch
  • Generating boilerplate item access patterns
  • Validating GSI design

Getting started

1. Run `uvx awslabs.dynamodb-mcp-server@latest` to install. Requires Python 3.10 or later. 2. Add the server to your Claude Desktop config with `AWS_REGION` and `AWS_PROFILE` environment variables pointing to your AWS credentials. 3. Restart Claude Desktop and ask it to list your DynamoDB tables to verify the connection works. 4. Describe a data model in plain English and ask for a single-table design. The server will suggest partition keys, sort keys, and GSIs. 5. Watch out: the server needs IAM permissions for `dynamodb:DescribeTable` and `dynamodb:ListTables`. If you see permission errors, check your AWS profile's policies.

Works with

Claude DesktopClaude CodeCursorVS Code

Similar MCPs