local-file-operating
Verified Safeby EarthTan
Overview
A simplified local file system MCP server designed for managing Obsidian note libraries and Markdown files, enabling AI assistants to securely interact with and manipulate knowledge bases.
Installation
python local_filesystem_mcp_simple.pyEnvironment Variables
- MCP_FILESYSTEM_ROOT
Security Notes
The server implements strong security measures for file operations, including root directory restriction via `resolve_path`, a file type whitelist (e.g., '.md', '.json', '.txt', '.canvas') via `_has_allowed_extension`, and file size limits (10MB) for reads. All file paths provided to tools are rigorously validated against these constraints. The `open_file_with_obsidian` tool uses `subprocess.run` to open files, which is controlled by the validated file paths, mitigating direct command injection risks. The `mcp` SDK's HTTP transports include DNS rebinding protection, enhancing network security if HTTP is enabled. No 'eval' or obvious hardcoded secrets were found.
Similar Servers
vulcan-file-ops
Transforms desktop AI assistants into powerful development partners by providing secure, user-controlled filesystem operations and code manipulation capabilities.
fastfs-mcp
Enables AI assistants (like Claude) to interact with local filesystems, manage Git repositories, and engage users through interactive prompts via a standardized JSON-based protocol.
filesys
A secure MCP server providing filesystem operations with controlled access to specified directories for agent-based interactions.
shell-exec-mcp
Provides a Model Context Protocol (MCP) server for executing arbitrary bash commands, supporting both foreground execution with timeouts and background job management.