mcp-filesystem-python
Verified Safeby harmonsir
Overview
A Python-based filesystem MCP Agent designed to perform user-requested file and directory operations with a focus on security and resource limits.
Installation
python core_main.py --transport streamable-httpEnvironment Variables
- MCP_FILESYSTEM_ROOT
- MCP_FILESYSTEM_SANDBOX
Security Notes
The server implements a robust sandbox mechanism (`resolve_path` and `_is_subpath`) to prevent path traversal attacks, defaulting to `True`. Disabling the sandbox via `--sandbox false` or `MCP_FILESYSTEM_SANDBOX=false` allows access to absolute paths outside the configured root, but this is explicitly prompted during interactive startup. There are no obvious 'eval' calls, obfuscation, or hardcoded secrets. File content reads are capped at ~32KB for batch operations, mitigating excessive data exfiltration risks.
Similar Servers
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
filesystem-mcp
Provides secure, efficient, and token-optimized filesystem operations for AI agents via the Model Context Protocol.
dev-kit-mcp-server
A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.
docker-mcp-server
A Model Context Protocol (MCP) server for containerized execution and file operations, enabling AI assistants to interact with a Docker environment via HTTP.