obsidian-http-mcp
Verified Safeby NasAndNora
Overview
Facilitates AI agents, such as Claude Code, to manage Obsidian notes by providing an HTTP-native Model Context Protocol (MCP) server, bypassing stdio transport bugs.
Installation
obsidian-http-mcpEnvironment Variables
- OBSIDIAN_API_KEY
- OBSIDIAN_BASE_URL
- PORT
Security Notes
The server implements path traversal prevention, ReDoS protection (query length limit), PORT validation, type safety, and a request size limit. Soft delete is enabled by default, moving files to a trash directory. Crucially, the documentation explicitly states the server is designed for trusted networks (localhost, LAN, VPN) and does NOT include built-in authentication, rate limiting, or HTTPS. It binds to `0.0.0.0` for cross-platform compatibility, which requires a reverse proxy with authentication, rate limiting, and TLS for production or internet exposure. The strong emphasis on user responsibility for external security measures is a positive, but the lack of built-in measures limits its standalone security score.
Similar Servers
mem-agent-mcp
Provides a Model Context Protocol (MCP) server for a memory agent, enabling LLMs to interact with an Obsidian-like memory system for contextual assistance and RAG.
mcp-obsidian
Connects AI assistants to Obsidian vaults for secure and intelligent interaction, enabling AI-powered knowledge management.
obsidian-mcp-plugin
Connects Obsidian vault to AI assistants via Model Context Protocol (MCP), enabling AI to understand and navigate notes as a knowledge graph for semantic search and information synthesis.
mcp-obsidian
Facilitates LLM interaction with Obsidian vaults via the Local REST API plugin, enabling read/write operations and command execution.