Codebase-Copilot-MCP
Verified Safeby sampathpulukurthi
Overview
Provides a sandboxed set of tools for an LLM agent to interact with and analyze a local file system, including listing, reading, and searching files, and generating repository overviews.
Installation
python src/intel_fs/server.pyEnvironment Variables
- MCP_BASE_DIR
Security Notes
The server implements strong path traversal prevention mechanisms using `Path.resolve()` and explicit checks against a defined `BASE_DIR` for all file system operations. It rejects absolute or home-relative paths from user input. The `smart_search` tool uses `subprocess.run` with explicit arguments for `ripgrep`, which is safer than `shell=True`, and includes a Python fallback. No `eval` or `exec` functions are used. Overall, the server appears well-designed for security within its intended scope, making it safe for agent interactions with a local file system.
Similar Servers
mcp-filesystem-server
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
files-stdio-mcp-server
Provides sandboxed filesystem access for AI agents to explore directories, read/search file content, and safely edit text files with checksum verification.
filesystem-mcp
Provides secure, efficient, and token-optimized filesystem operations for AI agents via the Model Context Protocol.