obsidian-vault-mcp
Verified Safeby ebullient
Overview
An Obsidian plugin that runs an MCP server, enabling external LLM tools to access and interact with your vault.
Installation
No command providedEnvironment Variables
- VAULT_MCP_URL
- VAULT_MCP_TOKEN
Security Notes
The plugin runs a local HTTP server and can optionally bind to all network interfaces (0.0.0.0). When enabling network access, bearer token authentication is available and highly recommended for security. Path-based Access Control Lists (ACLs) are implemented to restrict read and write access to vault files based on user-defined glob patterns, but depend on responsible configuration by the user. The plugin explicitly states it does not connect to external services or collect telemetry. No hardcoded secrets were found. Regex is used for ACL patterns and link exclusion, which are configured by the user or provided by the LLM client; this introduces a configurable risk if malicious patterns are used by a compromised LLM client, though this is mitigated by the ACLs and authentication.
Similar Servers
mcp-obsidian
Provides a secure, universal AI bridge for Obsidian vaults, enabling MCP-compatible AI assistants to read, write, and manage notes.
mcp-obsidian
Enables LLMs (like Claude) to programmatically interact with an Obsidian vault through the Local REST API plugin.
obsidian-mcp-server
Enables AI assistants to interact with and manage an Obsidian markdown vault via the Model Context Protocol (MCP).
obsidian-mcp-sb
Provides secure, intelligent, read-only access to an Obsidian vault for Large Language Models (LLMs), enabling semantic search, metadata filtering, and summarization.