local-file-operating
Verified Safeby EarthTan
Overview
A simplified local file system MCP server designed for managing Obsidian note libraries and Markdown files, enabling AI assistants to securely interact with and manipulate knowledge bases.
Installation
python local_filesystem_mcp_simple.pyEnvironment Variables
- MCP_FILESYSTEM_ROOT
Security Notes
The server implements strong security measures for file operations, including root directory restriction via `resolve_path`, a file type whitelist (e.g., '.md', '.json', '.txt', '.canvas') via `_has_allowed_extension`, and file size limits (10MB) for reads. All file paths provided to tools are rigorously validated against these constraints. The `open_file_with_obsidian` tool uses `subprocess.run` to open files, which is controlled by the validated file paths, mitigating direct command injection risks. The `mcp` SDK's HTTP transports include DNS rebinding protection, enhancing network security if HTTP is enabled. No 'eval' or obvious hardcoded secrets were found.
Similar Servers
mcp-filesystem-server
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
fastfs-mcp
Enables AI assistants (like Claude) to interact with local filesystems, manage Git repositories, and engage users through interactive prompts via a standardized JSON-based protocol.
vulcan-file-ops
Provides a backend service for managing file operations, likely built with TypeScript and Node.js.
filesys
A secure Model Context Protocol (MCP) server that provides controlled filesystem operations for client applications and coding agents.