AWS Fault Injection Service (FIS) MCP Server

This MCP server provides tools for working with AWS Fault Injection Service (FIS), allowing users to create, manage, and execute fault injection experiments.

Overview

AWS Fault Injection Service (FIS) is a managed service that enables you to perform fault injection experiments on your AWS workloads. This MCP server provides capabilities to interact with FIS, making it easier to create and manage chaos engineering experiments.

Security Features

Read-Only Mode by Default

The server operates in read-only mode by default for enhanced security. Write operations (create, start, stop, delete) require explicit enablement with the --allow-writes flag.

Benefits:

• Secure by Default: Prevents accidental destructive operations

• Explicit Enable: Write operations require explicit enablement

• Clear Messaging: Blocked operations provide informative error messages

Features

Read-Only Operations (Always Available)

• list_experiment_templates - List experiment templates

• get_experiment_template - Get experiment template details

• list_experiments - List experiments

• get_experiment - Get experiment details

• list_action_types - List action types

• generate_template_example - Generate template examples

Write Operations (Require --allow-writes)

• start_experiment - Start an experiment

• stop_experiment - Stop an experiment

• create_experiment_template - Create experiment template

• delete_experiment_template - Delete experiment template

Installation and Usage

Option 1: Using uvx (Recommended)

The easiest way to run the server is using uvx. This method doesn't require managing virtual environments:

Option 2: Using pip install

Option 3: Local Development Setup

1. Clone the repository:

2. Install uv from Astral or the GitHub README

3. Install Python using uv python install 3.10

4. Set up a virtual environment:

5. Run the MCP server:

MCP Client Configuration

For uvx usage (Recommended):

Read-Only Mode (Default - Secure):

With Write Operations Enabled:

Note: The -- separator is required to pass arguments to the application rather than to uvx itself.

For pip installed version:

For local development:

Read-Only Mode (Default):

With Write Operations Enabled:

Available Tools

Experiment Templates

• list_experiment_templates: List all AWS FIS experiment templates

• get_experiment_template: Get detailed information about a specific template

• create_experiment_template: Create a new experiment template (requires --allow-writes)

• delete_experiment_template: Delete an experiment template (requires --allow-writes)

Experiments

• list_experiments: List all AWS FIS experiments

• get_experiment: Get detailed information about a specific experiment

• start_experiment: Start a new experiment based on a template (requires --allow-writes)

• stop_experiment: Stop a running experiment (requires --allow-writes)

Action Types

• list_action_types: List all available AWS FIS action types

• generate_template_example: Generate an example template for a given target and action type

Security and Error Handling

Read-Only Mode Error Messages

When attempting write operations in read-only mode, you'll receive structured error messages:

Region Support

All functions support specifying AWS regions, with configurable defaults:

Example Usage

Once connected to Amazon Q with the MCP server running, you can use commands like:

Requirements

• Python 3.10+

• boto3

• AWS credentials configured with appropriate permissions for FIS

License

This project is licensed under the MIT License - see the LICENSE file for details.