dufs-mcp-server
Verified Safeby hello--world
Overview
Acts as a Model Context Protocol (MCP) server, wrapping the dufs API to provide comprehensive file management operations (upload, download, delete, list, move, hash, create directory, download folder as zip) via Server-Sent Events (SSE) or standard I/O (stdio) for integration with MCP clients.
Installation
DUFS_URL="http://127.0.0.1:5000" go run main.goEnvironment Variables
- DUFS_URL
- DUFS_USERNAME
- DUFS_PASSWORD
- DUFS_UPLOAD_DIR
- DUFS_ALLOW_INSECURE
- MCP_MODE
- PORT
Security Notes
The server correctly handles sensitive information (DUFS_URL, username, password) via environment variables, not hardcoding them. It implements basic authentication for calls to the upstream 'dufs' server. File path handling for local operations relies on the integrity of the calling MCP client, meaning malicious input paths could lead to unintended local file system access/modification if the server is deployed with excessive permissions or exposed to untrusted clients without proper access controls. The 'DUFS_ALLOW_INSECURE' environment variable is present in the configuration struct but is not utilized in the provided Go client code to configure TLS, meaning it defaults to secure connections, which is safer but might not meet user expectations for bypassing certificate checks.
Similar Servers
mcp-filesystem-server
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
orla
Orla acts as a runtime for Model Context Protocol (MCP) servers, enabling the execution of lightweight open-source AI agents and command-line tools locally.
tinystruct-mcp
A modular Java server providing a JSON-RPC interface for file system and Git/GitHub operations, aimed at automation and DevOps workflows.
filesys
A secure MCP server providing filesystem operations with controlled access to specified directories for agent-based interactions.