Amazon Security Lake · Capability

Amazon Security Lake API — Data Lakes

Amazon Security Lake API — Data Lakes. 4 operations. Lead operation: Amazon Security Lake Create Data Lake. Self-contained Naftiko capability covering one Amazon Security Lake business surface.

Run with Naftiko Amazon Security LakeData Lakes

What You Can Do

POST
Createdatalake — Amazon Security Lake Create Data Lake
/v1/v1/datalake
GET
Listdatalakes — Amazon Security Lake List Data Lakes
/v1/v1/datalake
PUT
Updatedatalake — Amazon Security Lake Update Data Lake
/v1/v1/datalake/{datalakearn}
DELETE
Deletedatalake — Amazon Security Lake Delete Data Lake
/v1/v1/datalake/{datalakearn}

MCP Tools

amazon-security-lake-create-data

Amazon Security Lake Create Data Lake

amazon-security-lake-list-data

Amazon Security Lake List Data Lakes

read-only idempotent
amazon-security-lake-update-data

Amazon Security Lake Update Data Lake

idempotent
amazon-security-lake-delete-data

Amazon Security Lake Delete Data Lake

idempotent

Capability Spec

amazon-security-lake-data-lakes.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: Amazon Security Lake API — Data Lakes
  description: 'Amazon Security Lake API — Data Lakes. 4 operations. Lead operation: Amazon Security Lake Create Data Lake.
    Self-contained Naftiko capability covering one Amazon Security Lake business surface.'
  tags:
  - Amazon Security Lake
  - Data Lakes
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    AMAZON_SECURITY_LAKE_API_KEY: AMAZON_SECURITY_LAKE_API_KEY
capability:
  consumes:
  - type: http
    namespace: amazon-security-lake-data-lakes
    baseUri: https://securitylake.{region}.amazonaws.com
    description: Amazon Security Lake API — Data Lakes business capability. Self-contained, no shared references.
    resources:
    - name: v1-datalake
      path: /v1/datalake
      operations:
      - name: createdatalake
        method: POST
        description: Amazon Security Lake Create Data Lake
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
      - name: listdatalakes
        method: GET
        description: Amazon Security Lake List Data Lakes
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: regions
          in: query
          type: array
          description: List of regions to include in the response.
    - name: v1-datalake-dataLakeArn
      path: /v1/datalake/{dataLakeArn}
      operations:
      - name: updatedatalake
        method: PUT
        description: Amazon Security Lake Update Data Lake
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: dataLakeArn
          in: path
          type: string
          description: The ARN of the data lake to update.
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
      - name: deletedatalake
        method: DELETE
        description: Amazon Security Lake Delete Data Lake
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: dataLakeArn
          in: path
          type: string
          description: The ARN of the data lake to delete.
          required: true
    authentication:
      type: apikey
      key: Authorization
      value: '{{env.AMAZON_SECURITY_LAKE_API_KEY}}'
      placement: header
  exposes:
  - type: rest
    namespace: amazon-security-lake-data-lakes-rest
    port: 8080
    description: REST adapter for Amazon Security Lake API — Data Lakes. One Spectral-compliant resource per consumed operation,
      prefixed with /v1.
    resources:
    - path: /v1/v1/datalake
      name: v1-datalake
      description: REST surface for v1-datalake.
      operations:
      - method: POST
        name: createdatalake
        description: Amazon Security Lake Create Data Lake
        call: amazon-security-lake-data-lakes.createdatalake
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: GET
        name: listdatalakes
        description: Amazon Security Lake List Data Lakes
        call: amazon-security-lake-data-lakes.listdatalakes
        with:
          regions: rest.regions
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/v1/datalake/{datalakearn}
      name: v1-datalake-datalakearn
      description: REST surface for v1-datalake-dataLakeArn.
      operations:
      - method: PUT
        name: updatedatalake
        description: Amazon Security Lake Update Data Lake
        call: amazon-security-lake-data-lakes.updatedatalake
        with:
          dataLakeArn: rest.dataLakeArn
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: DELETE
        name: deletedatalake
        description: Amazon Security Lake Delete Data Lake
        call: amazon-security-lake-data-lakes.deletedatalake
        with:
          dataLakeArn: rest.dataLakeArn
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: amazon-security-lake-data-lakes-mcp
    port: 9090
    transport: http
    description: MCP adapter for Amazon Security Lake API — Data Lakes. One tool per consumed operation, routed inline through
      this capability's consumes block.
    tools:
    - name: amazon-security-lake-create-data
      description: Amazon Security Lake Create Data Lake
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: amazon-security-lake-data-lakes.createdatalake
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: amazon-security-lake-list-data
      description: Amazon Security Lake List Data Lakes
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: amazon-security-lake-data-lakes.listdatalakes
      with:
        regions: tools.regions
      outputParameters:
      - type: object
        mapping: $.
    - name: amazon-security-lake-update-data
      description: Amazon Security Lake Update Data Lake
      hints:
        readOnly: false
        destructive: false
        idempotent: true
      call: amazon-security-lake-data-lakes.updatedatalake
      with:
        dataLakeArn: tools.dataLakeArn
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: amazon-security-lake-delete-data
      description: Amazon Security Lake Delete Data Lake
      hints:
        readOnly: false
        destructive: true
        idempotent: true
      call: amazon-security-lake-data-lakes.deletedatalake
      with:
        dataLakeArn: tools.dataLakeArn
      outputParameters:
      - type: object
        mapping: $.