Hi team π
I ran a free deep security scan of the @modelcontextprotocol/server-filesystem npm package using MCPSafe β a purpose-built scanner for MCP servers using a 5-LLM consensus panel to detect prompt injection risks, over-scoped tool schemas, supply chain issues, and more.
Results: 68/100 Β· Grade C
| Severity |
Count |
| π΄ Critical |
0 |
| π High |
7 |
| π‘ Medium |
0 |
| π’ Low |
0 |
Summary: 7 high-severity findings in the filesystem server β this server has broad filesystem access so these are worth reviewing carefully.
π Full report with findings and evidence: https://mcpsafe.io/registry/npm/@modelcontextprotocol/server-filesystem
Add a security badge to your README
[](https://mcpsafe.io/registry/npm/@modelcontextprotocol/server-filesystem)
This badge auto-updates whenever a new scan runs β great for showing users your security posture.
Feel free to close this if you're already tracking these findings. Happy to answer any questions about specific findings.
β Truong BUI Β· mcpsafe.io
Hi team π
I ran a free deep security scan of the @modelcontextprotocol/server-filesystem npm package using MCPSafe β a purpose-built scanner for MCP servers using a 5-LLM consensus panel to detect prompt injection risks, over-scoped tool schemas, supply chain issues, and more.
Results: 68/100 Β· Grade C
Summary: 7 high-severity findings in the filesystem server β this server has broad filesystem access so these are worth reviewing carefully.
π Full report with findings and evidence: https://mcpsafe.io/registry/npm/@modelcontextprotocol/server-filesystem
Add a security badge to your README
This badge auto-updates whenever a new scan runs β great for showing users your security posture.
Feel free to close this if you're already tracking these findings. Happy to answer any questions about specific findings.
β Truong BUI Β· mcpsafe.io