mcp-filesystem-server
Verified Safeby mark3labs
Overview
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
Installation
docker run -i --rm ghcr.io/mark3labs/mcp-filesystem-server:latest /appSecurity Notes
The server implements robust path validation including absolute path resolution, explicit allowed directories, and comprehensive symlink resolution with security checks to prevent directory traversal attacks. All file operations leverage this validation. The 'modify_file' tool uses regex, which could theoretically be vulnerable to ReDoS if patterns are untrusted, but this is mitigated by the overall path restrictions. No hardcoded secrets or arbitrary code execution mechanisms ('eval') were found. The server operates with the privileges of its running user, which is standard for local tools.
Similar Servers
filesystem-mcp
Provides secure, efficient, and token-optimized filesystem operations for AI agents via the Model Context Protocol.
dev-kit-mcp-server
A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.
docker-mcp-server
A Model Context Protocol (MCP) server for containerized execution and file operations, enabling AI assistants to interact with a Docker environment via HTTP.
filesys
A secure MCP server providing filesystem operations with controlled access to specified directories for agent-based interactions.