MCP Server Policy

FILESYSTEM MCP POLICY

Enforce policies on every tool call to the Filesystem MCP Server. 12 tools listed, categorised, and ready for rules.

modelcontextprotocol/server-filesystem 7 read 5 write 12 tools total

filesystem files directories local-storage

GET STARTED

Download this policy scaffold and add your rules. Intercept enforces them on every tool call before it reaches Filesystem.

terminal

# Download policy scaffold


curl -o filesystem.yaml https://raw.githubusercontent.com/policylayer/intercept/main/policies/filesystem.yaml

# Run with Intercept


intercept --policy filesystem.yaml -- npx -y @modelcontextprotocol/server-filesystem

Server documentation: https://github.com/modelcontextprotocol/servers/tree/main/src/filesystem

READ TOOLS

get_file_info Retrieve detailed metadata about a file or directory

list_allowed_directories Returns the list of directories the server can access

list_directory Get a detailed listing of files and directories

read_media_file Read an image or audio file

read_multiple_files Read the contents of multiple files simultaneously

read_text_file Read complete contents of a file as text

search_files Recursively search for files and directories

WRITE TOOLS

create_directory Create a new directory or ensure it exists

edit_file Make selective edits using advanced pattern matching

move_file Move or rename files and directories

write_file Create a new file or overwrite an existing file

OTHER TOOLS

directory_tree Get a recursive tree view of files and directories

POLICY YAML

This scaffold lists every tool with empty rules. Add conditions — rate limits, argument validation, deny rules — then deploy with Intercept.

filesystem.yaml

version: "1"
description: "Policy for modelcontextprotocol/server-filesystem"
default: "allow"
tools:
    get_file_info:
        rules: []
    list_allowed_directories:
        rules: []
    list_directory:
        rules: []
    read_media_file:
        rules: []
    read_multiple_files:
        rules: []
    read_text_file:
        rules: []
    search_files:
        rules: []
    create_directory:
        rules: []
    edit_file:
        rules: []
    move_file:
        rules: []
    write_file:
        rules: []
    directory_tree:
        rules: []

RELATED POLICIES

Box 80 tools

files

Google Workspace Drive (gws CLI) 57 tools

files

Google Drive 1 tools

files

FREQUENTLY ASKED QUESTIONS

What tools does the Filesystem MCP server expose?

The Filesystem MCP Server exposes 12 tools across 3 categories: Read, Write, Other. Each tool can be individually controlled with Intercept policies.

How do I enforce policies on Filesystem?

Download the policy scaffold, add rules (rate limits, argument validation, deny rules), then run Intercept as a proxy in front of the Filesystem MCP server. Every tool call is evaluated against your YAML policy before execution.

Is the Filesystem policy free to use?

Yes. All Intercept policies are open source under the Apache 2.0 licence. Download, modify, and deploy without restrictions.

ENFORCE POLICIES ON FILESYSTEM

Open source. One binary. Zero dependencies.

VIEW ON GITHUB Browse all policies →

FILESYSTEM MCP POLICY

GET STARTED

READ TOOLS

get_file_info

list_allowed_directories

list_directory

read_media_file

read_multiple_files

read_text_file

search_files

WRITE TOOLS

create_directory

edit_file

move_file

write_file

OTHER TOOLS

directory_tree

POLICY YAML

RELATED POLICIES

FREQUENTLY ASKED QUESTIONS

What tools does the Filesystem MCP server expose?

How do I enforce policies on Filesystem?

Is the Filesystem policy free to use?

ENFORCE POLICIES ON FILESYSTEM

GET IN TOUCH