@modelcontextprotocol/server-filesystem

No risky behavior detected.

Filesystem writes 1

AI review

This is the official Anthropic MCP filesystem server with no hidden instructions, prompt injection, or data exfiltration mechanisms. The code only performs standard filesystem operations within explicitly configured allowed directories.

Model: deepseek-chat

Static findings

Filesystem writes · Reads or writes the filesystem

low dist/lib.js:114 await fs.unlink(tempPath);

Scanning every extension your team installs?

Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.

MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.

@modelcontextprotocol/server-filesystem

AI review

Static findings

Filesystem writes · Reads or writes the filesystem

Scanning every extension your team installs?

Get early access