filesystem-mcp
Verified Safeby domdomegg
Overview
This server provides tools for reading, creating, editing files, and listing directories on the local filesystem, enabling automation of tasks like configuration updates, report generation, and code refactoring.
Installation
npx -y filesystem-mcpEnvironment Variables
- MCP_TRANSPORT
- PORT
- MCP_BASE_URL
Security Notes
The server directly manipulates the local filesystem, which inherently carries significant security implications if the controlling agent is compromised or misused. However, the provided source code does not contain direct 'eval' or arbitrary command execution vulnerabilities. File operations are performed using standard Node.js `fs/promises` APIs, and input parameters are validated via Zod schemas. Path expansion using `os.homedir()` limits path traversal risks to the user's home directory context. The `str_replace` tool specifically checks for unique occurrences, mitigating risks of unintended broad replacements. While the implementation appears robust for its stated purpose, the powerful nature of direct filesystem access necessitates deployment in a trusted environment with a thoroughly vetted controlling agent.
Similar Servers
files-stdio-mcp-server
Provides sandboxed filesystem access for AI agents to explore directories, read/search file content, and safely edit text files with checksum verification.
shell-exec-mcp
Provides a Model Context Protocol (MCP) server for executing arbitrary bash commands, supporting both foreground execution with timeouts and background job management.
llm-tools
Provides high-performance filesystem operations (file management, editing, search, archiving) as an MCP server for AI agents like Claude Code, acting as the agent's 'hands' for codebase interaction.
Claude-MCP
Extends Claude Desktop's capabilities with surgical file editing, database operations, and document processing.