IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.
{
"mcpServers": {
"iam-policy-autopilot": {
"command": "uvx",
"args": [
"iam-policy-autopilot",
"mcp-server"
],
"env": {
"AWS_PROFILE": "your-profile-name",
"AWS_REGION": "us-east-1"
},
"disabled": false,
"autoApprove": []
}
}
}
[](https://github.com/awslabs/iam-policy-autopilot/blob/main/LICENSE) [](https://github.com/awslabs/iam-policy-autopilot/actions/workflows/build_and_publish.yml) [](https://pypi.org/project/iam-policy-autopilot/) # IAM Policy Autopilot An open source Model Context Protocol (MCP) server and command-line tool that helps your AI coding assistants quickly create baseline IAM policies that you can refine as your application evolves, so you can build faster. IAM Policy Autopilot analyzes your application code locally to generate identity-based policies for application roles, enabling faster IAM policy creation and reducing access troubleshooting time. IAM Policy Autopilot supports policy generation for applications built in Python, Go, TypeScript, JavaScript, and Java — see [Supported Languages and SDKs for policy generation](#supported-languages-and-sdks-for-policy-generation). We want to hear from you. Ask questions or share ideas in [Discussions](https://github.com/awslabs/iam-policy-autopilot/discussions), report bugs through [Issues](https://github.com/awslabs/iam-policy-autopilot/issues), or contribute directly with a [Pull Request](https://github.com/awslabs/iam-policy-autopilot/pulls). ## Table of Contents - [Who is IAM Policy Autopilot for?](#who-is-iam-policy-autopilot-for) - [How is IAM Policy Autopilot helpful?](#how-is-iam-policy-autopilot-helpful) - [Best Practices and Considerations](#best-practices-and-considerations) - [Getting Started](#getting-started) - [Network Requirements](#network-requirements) - [CLI Usage](#cli-usage) - [Supported Languages and SDKs for policy generation](#supported-languages-and-sdks-for-policy-generation) - [Build Instructions](#build-instructions) - [Workspace Structure](#workspace-structure) - [Development](#development) - [Security](#security) - [License](#license) ## Who is IAM Policy Autopilot for? IAM Policy Autopilot is for builders on AWS using AI coding assistants, including developers, product managers, technical experimenters, and business leaders. ## How is IAM Policy Autopilot helpful? IAM Policy Autopilot is: ### Fast IAM Policy Autopilot accelerates development by generating baseline identity-based IAM policies. Your AI coding assistant can call IAM Policy Autopilot to analyze AWS SDK calls within your application. IAM Policy Autopilot then automatically creates the baseline IAM permissions for your application roles. ### Reliable IAM Policy Autopilot's deterministic code analysis helps create reliable and valid IAM policies that reduce policy troubleshooting. By using valid policies created with the MCP server, you reduce time spent on policy-related debugging and accelerate application deployment by avoiding permission-related delays. ### Up-to-date IAM Policy Autopilot stays up to date with the latest AWS services and features so that builders and coding assistants have access to the latest AWS IAM permissions knowledge. It helps keep your application role's permissions current with AWS's evolving capabilities. ## Best Practices and Considerations ### Review and refine policies generated by IAM Policy Autopilot IAM Policy Autopilot...
A collection of MCP servers.
Chrome DevTools for coding agents
Enhanced ChatGPT Clone: Features Agents, MCP, DeepSeek, Anthropic, AWS, OpenAI, Responses API, Azure, Groq, o1, GPT-5, M...
Playwright MCP server
GitHub's official MCP Server
🚀 The fast, Pythonic way to build MCP servers and clients.