Capability
3 artifacts provide this capability.
Want a personalized recommendation?
Find the best match →via “configurable-root-directory-isolation”
MCP server for filesystem access
Unique: Implements filesystem sandboxing at the MCP server level with configurable root directories and path normalization, preventing directory traversal without requiring OS-level capabilities or containers
vs others: Simpler to deploy than container-based isolation while providing stronger guarantees than application-level checks alone, with explicit configuration making security boundaries visible and auditable
via “path validation and traversal attack prevention”
MCP-compatible server tool for filesystem access from https://github.com/adisuryanathan/modelcontextprotocol-servers.git
Unique: Implements canonical path resolution with root directory anchoring, preventing both simple (`../`) and obfuscated traversal attempts. Validates paths before any filesystem operation, failing fast on invalid requests.
vs others: More robust than simple string prefix checking because it handles symlinks and path normalization; more secure than no validation because it prevents common attack vectors.
via “repository-root-discovery-and-path-validation”
** - Tools to read, search, and manipulate Git repositories
Unique: Implements path validation as a core MCP Tool capability rather than internal middleware, making security boundaries explicit and auditable. Uses GitPython's repository object to determine valid paths based on Git's own file tracking rather than filesystem traversal.
vs others: More robust than simple path prefix checking because it understands Git's file tracking semantics and can validate paths against actual repository contents, preventing attacks that exploit filesystem symlinks or Git's internal structure.
Building an AI tool with “Repository Root Discovery And Path Validation”?
Submit your artifact →curl unfragile.ai/agents.md | sh© 2026 Unfragile. The platform for software for agents.