← Back to Skills Marketplace
Filesystem MCP Server
by
Siddharth Menon
· GitHub ↗
· v1.0.0
5116
Downloads
7
Stars
91
Active Installs
1
Versions
Install in OpenClaw
/install filesystem-mcp
Description
Secure, sandboxed filesystem access enabling agents to list, read, write, create, move, delete, search files and directories within allowed paths.
Usage Guidance
Install only if you need an agent to work with local files. Use the smallest specific folders possible, prefer read-only mode unless writing is required, avoid credential or whole-home directories, review destructive actions before approving them, and consider pinning or verifying the upstream npm package.
Capability Analysis
Type: OpenClaw Skill
Name: filesystem-mcp
Version: 1.0.0
The skill bundle describes a 'Filesystem MCP Server' designed for secure, sandboxed file operations for AI agents. The `SKILL.md` explicitly details robust security features like sandboxed access, path validation, and permission controls, and provides best practices for secure configuration. There are no instructions for prompt injection, data exfiltration, malicious execution, or persistence within the provided files. The installation and configuration steps are for setting up the server itself, not for the agent to perform unauthorized actions. While filesystem access is a powerful capability, the documentation emphasizes a security-first design, classifying it as benign based on the provided content.
Capability Assessment
Purpose & Capability
The stated purpose matches the documented capabilities: local file listing, reading, writing, moving, deleting, and searching are all disclosed as core filesystem MCP functions.
Instruction Scope
The skill explains allowed directories, read-only mode, sandboxing, and least-privilege practices, though its invocation language and examples are broad enough that users should scope access carefully.
Install Mechanism
The artifact is documentation-only and instructs users to install or run an external npm package via npm/npx without a pinned version; this is normal for MCP setup but depends on upstream package trust.
Credentials
Filesystem access is proportionate to the purpose, but broad allowed paths such as Documents or Projects could expose private files, logs, source code, or secrets to the agent context.
Persistence & Privilege
Adding the MCP server to a client configuration makes file tools available under the user's local permissions inside configured directories; no hidden persistence, privilege escalation, or unrelated background behavior is shown.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install filesystem-mcp - After installation, invoke the skill by name or use
/filesystem-mcp - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: Official Filesystem MCP server with secure, sandboxed file operations. Read, write, search, and manage files with configurable access controls. Essential for agent workflows.
Metadata
Frequently Asked Questions
What is Filesystem MCP Server?
Secure, sandboxed filesystem access enabling agents to list, read, write, create, move, delete, search files and directories within allowed paths. It is an AI Agent Skill for Claude Code / OpenClaw, with 5116 downloads so far.
How do I install Filesystem MCP Server?
Run "/install filesystem-mcp" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Filesystem MCP Server free?
Yes, Filesystem MCP Server is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Filesystem MCP Server support?
Filesystem MCP Server is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Filesystem MCP Server?
It is built and maintained by Siddharth Menon (@buddhasource); the current version is v1.0.0.
More Skills