mcp-fileop
Verified Safeby yuriyo
Overview
A stateful MCP server for efficient, memory-mapped file operations, designed for VS Code integration, CLI tools, and web applications requiring streaming and progress updates.
Installation
docker run --rm -it -p 8080:8080 --name=mcp-fileop-server -v /tmp:/mnt/tmp:ro -v $HOME/tmp:/mnt/home_tmp:ro mcp-fileop:latestEnvironment Variables
- TZ
Security Notes
The server includes critical safeguards like `allowed_paths` configuration and canonical path resolution to prevent directory traversal and restrict file access. However, for the HTTP/SSE implementations (`mcp_stream`), the server binds to `0.0.0.0:8080` and explicitly enables CORS (`Access-Control-Allow-Origin: *`) without built-in authentication or authorization. This makes it vulnerable if exposed to untrusted networks or clients without an external proxy providing security layers. For local or VS Code integration (stdio), these are lesser concerns. No obvious malicious patterns, `eval` usage, or hardcoded secrets were found.
Similar Servers
octocode
An intelligent code indexer and semantic search engine that builds knowledge graphs of codebases, providing AI-powered assistance for development tasks like natural language search, smart commits, and code reviews, with local-first and multi-language support.
mcp-server-csdn
The server automatically publishes Markdown articles to the CSDN platform, acting as a tool called by a Spring AI agent.
ancplua-mcp
Provides C#/.NET Model Context Protocol (MCP) servers to expose development tools for filesystem, Git, CI, Roslyn, and multi-AI orchestration workflows.
codeguide-mcp
An MCP server that provides coding guides and best practices to AI assistants, designed to extend or replace `AGENTS.md` files.