mcp-fileop
Verified Safeby yuriyo
Overview
A stateful MCP server for efficient, memory-mapped file operations, designed for VS Code integration, CLI tools, and web applications requiring streaming and progress updates.
Installation
docker run --rm -it -p 8080:8080 --name=mcp-fileop-server -v /tmp:/mnt/tmp:ro -v $HOME/tmp:/mnt/home_tmp:ro mcp-fileop:latestEnvironment Variables
- TZ
Security Notes
The server includes critical safeguards like `allowed_paths` configuration and canonical path resolution to prevent directory traversal and restrict file access. However, for the HTTP/SSE implementations (`mcp_stream`), the server binds to `0.0.0.0:8080` and explicitly enables CORS (`Access-Control-Allow-Origin: *`) without built-in authentication or authorization. This makes it vulnerable if exposed to untrusted networks or clients without an external proxy providing security layers. For local or VS Code integration (stdio), these are lesser concerns. No obvious malicious patterns, `eval` usage, or hardcoded secrets were found.
Similar Servers
octocode
Octocode is an intelligent code indexer, semantic search engine, and knowledge graph builder that provides AI-powered assistance for developers.
mcp-server-csdn
The server automatically publishes Markdown articles to the CSDN platform, acting as a tool called by a Spring AI agent.
ancplua-mcp
Provides C#/.NET Model Context Protocol (MCP) servers to expose development tools for filesystem, Git, CI/CD, Roslyn analysis, and multi-AI orchestration, facilitating advanced developer workflows and AI-assisted development.
mt-data-mcp
A MetaTrader5 Model Context Protocol (MCP) server for accessing market data, performing technical analysis, generating forecasts, and optimizing trading strategies.