DesktopCommanderMCP
Verified Safeby wonderwhy-er
Overview
Enables an AI agent to interact with the local filesystem and terminal, execute commands, analyze data, and perform code editing.
Installation
npx -y @wonderwhy-er/desktop-commander@latestEnvironment Variables
- DC_FLAG_URL
- MCP_DXT
Security Notes
The server allows direct execution of terminal commands via `start_process`. Although it has a `blockedCommands` list and `allowedDirectories` for filesystem operations, the README explicitly states these can be bypassed by terminal commands (e.g., via symlinks, command substitution, or absolute paths). This means an AI agent, if not perfectly aligned or if exploited, could achieve arbitrary code execution and access/modify files outside the intended scope. The `is_safe_to_run` flag is set to true as the tool's core purpose is to provide these capabilities to an AI, implying a controlled environment and a capable agent.
Similar Servers
tmux-mcp
Enables AI assistants to interact with, control, and observe tmux terminal sessions.
consult-llm-mcp
Facilitates Claude Code to consult powerful external AI models for complex code analysis, debugging, and review tasks.
claude-command-runner
Facilitates AI (Claude Desktop) interaction with terminal applications by executing commands, streaming output, managing command pipelines, and providing smart suggestions, primarily optimized for Warp Terminal.
vibes
Vibes transforms Claude Desktop into a conversational development environment through distributed MCP servers, allowing users to describe what they want to build and have Claude implement it while teaching them.