// MCP TOOL REFERENCE

AWS CLOUD CONTROL API (CCAPI) MCP SERVER TOOLS

14 tools from the AWS Cloud Control API (CCAPI) MCP Server MCP Server, categorised by risk level.

View the AWS Cloud Control API (CCAPI) MCP Server policy →

READ TOOLS

7
check_environment_variables Check if required environment variables are set correctly. get_aws_account_info Get information about the current AWS account being used. Common questions this tool answers: - "What AWS account am I using?" - "Which AWS region... get_aws_session_info Get information about the current AWS session. This tool provides details about the current AWS session, including the profile name, account ID, r... get_resource Get details of a specific AWS resource. get_resource_request_status Get the status of a long running operation with the request token. get_resource_schema_information Get schema information for an AWS resource. Parameters: resource_type: The AWS resource type (e.g., "AWS::S3::Bucket") Returns: The resou... list_resources List AWS resources of a specified type. Parameters: resource_type: The AWS resource type (e.g., "AWS::S3::Bucket", "AWS::RDS::DBInstance") ...

WRITE TOOLS

4
create_resource Create an AWS resource. This tool automatically adds default identification tags to all resources for support and troubleshooting purposes. IMPOR... create_template Create a CloudFormation template from existing resources using the IaC Generator API. This tool allows you to generate CloudFormation templates fr... generate_infrastructure_code Generate infrastructure code before resource creation or update. update_resource Update an AWS resource. IMPORTANT: Always check the response for 'security_warning' field and display any warnings to the user.

DESTRUCTIVE TOOLS

2
delete_resource Delete an AWS resource. explain MANDATORY: Explain any data in clear, human-readable format. For infrastructure operations (create/update/delete): - CONSUMES generated_code_token...

EXECUTE TOOLS

1
run_checkov Run Checkov security and compliance scanner on server-stored CloudFormation template. SECURITY: This tool only scans CloudFormation templates stor...
// FAQ
How many tools does the AWS Cloud Control API (CCAPI) MCP Server MCP server have? +

The AWS Cloud Control API (CCAPI) MCP Server MCP server exposes 14 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on AWS Cloud Control API (CCAPI) MCP Server tools? +

Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the AWS Cloud Control API (CCAPI) MCP Server server.

What risk categories do AWS Cloud Control API (CCAPI) MCP Server tools fall into? +

AWS Cloud Control API (CCAPI) MCP Server tools are categorised as Read (7), Write (4), Destructive (2), Execute (1). Each category has a recommended default policy.

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.