AWS‑IReveal‑MCP

Overview Inspect Schema Related Servers Score Discussions

guardduty_list_findings

Retrieve GuardDuty finding IDs by specifying a detector ID, optionally filtering by severity or specific IDs. Use the output to fetch detailed findings with guardduty_get_findings.

Instructions

List GuardDuty finding IDs for a given detector. Optionally, you can supply a list of finding IDs to retrieve specific findings or a minimum severity threshold to filter findings. Parameters: aws_region (str): The AWS region - use 'us-east-1' if not specified. detector_id (str): The GuardDuty detector ID. finding_ids (list, optional): Specific finding IDs to query. severity_threshold (float, optional): If provided, returns only findings with severity greater than this value. <IMPORTANT> After calling this tool, you should call guardduty_get_findings multiple times with the finding_ids returned by this tool. </IMPORTANT> Returns: str: JSON-formatted list of finding IDs.

Input Schema

TableJSON Schema

Name	Required	Description	Default
`aws_region`	Yes
`detector_id`	Yes
`finding_ids`	No
`severity_threshold`	No

Implementation Reference

server.py:568-615 (handler)
The handler function for the 'guardduty_list_findings' MCP tool. It uses the boto3 GuardDuty client to list finding IDs optionally filtered by specific IDs or severity threshold. The @mcp.tool() decorator registers it with the FastMCP server.
@mcp.tool() async def guardduty_list_findings( aws_region: str, detector_id: str, finding_ids: list = None, severity_threshold: float = None ) -> str: """ List GuardDuty finding IDs for a given detector. Optionally, you can supply a list of finding IDs to retrieve specific findings or a minimum severity threshold to filter findings. Parameters: aws_region (str): The AWS region - use 'us-east-1' if not specified. detector_id (str): The GuardDuty detector ID. finding_ids (list, optional): Specific finding IDs to query. severity_threshold (float, optional): If provided, returns only findings with severity greater than this value. <IMPORTANT> After calling this tool, you should call guardduty_get_findings multiple times with the finding_ids returned by this tool. </IMPORTANT> Returns: str: JSON-formatted list of finding IDs. """ try: client = boto3.client('guardduty', region_name=aws_region) params = {} if finding_ids: params["FindingIds"] = finding_ids if severity_threshold is not None: # Apply a filter criterion for severity greater than the threshold. params["FindingCriteria"] = { "Criterion": { "severity": { "Gt": int(severity_threshold) } } } response = client.list_findings( DetectorId=detector_id, **params ) findings = response.get("FindingIds", []) return json.dumps(findings, indent=2) except Exception as e: return f"Error listing GuardDuty findings: {str(e)}"

This server cannot be installed

Related Tools

guardduty_list_detectors
@Brucedh/aws-ireveal-mcp
guardduty_get_findings
@Brucedh/aws-ireveal-mcp
guardduty_get_finding_statistics
@Brucedh/aws-ireveal-mcp
get_services
@wpfleger96/pagerduty-mcp-server
list_detections
@panther-labs/mcp-panther
get-findings
@onsecurity/onsecurity-mcp-server

Latest Blog Posts

Code Execution with MCP: Architecting Agentic Efficiency
By Om-Shree-0709 on December 14, 2025.
Model Context Protocol Proxies: Enabling Enterprise Control with Virtual MCPs
By Om-Shree-0709 on December 9, 2025.
AI Security
Virtual MCP
Kubernetes Operator
The State of MCP in 2025: Who's Building What and Why It Matters
By punkpeye on December 7, 2025.
mcp
startups

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Brucedh/aws-ireveal-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server