Is Assay MCP Server safe to use?

Assay MCP Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "@modelcontextprotocol/server-filesystem". Review the Security section above for details before installing.

How do I install Assay MCP Server?

Assay MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with Assay MCP Server?

Assay MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Assay MCP Server actively maintained?

Assay MCP Server is actively maintained — last commit was 0 days ago. It has 2 GitHub stars.

Assay MCP Server

@modelcontextprotocol/server-filesystem

The firewall for MCP tool calls. Block, audit, replay with evidence bundles.

2 321.9k/wk 0 tools GitHub npm PyPI

2 open CVEs

No license

Actively maintained

Last commit 0d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-rul1an-assay": {
      "args": [
        "-y",
        "@modelcontextprotocol/server-filesystem"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-rul1an-assay)](https://mcppedia.org/s/io-github-rul1an-assay)

Read me

What Assay MCP Server does

Your MCP agent calls read_file, exec, web_search — but should it, and what can you honestly prove about that run afterward?

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@modelcontextprotocol/server-filesystem' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

55/100across 5 weighted dimensions

How we score →

0255075100

−45

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

2 open

CVE-2025-53110mediumCVSS 4

@modelcontextprotocol/server-filesystem vulnerability allows for path validation bypass via colliding path prefix

Versions of Filesystem prior to 0.6.3 & 2025.7.1 could allow access to unintended files in cases where the prefix matches an allowed directory. Users are advised to upgrade to 2025.7.1 to resolve the issue. Thank you to Elad Beber (Cymulate) for reporting these issues.

Affected: >= 0source →

CVE-2025-53109mediumCVSS 4

@modelcontextprotocol/server-filesystem allows for path validation bypass via prefix matching and symlink handling

Versions of Filesystem prior to 0.6.3 & 2025.7.1 could allow access to unintended files via symlinks within allowed directories. Users are advised to upgrade to 2025.7.1 to resolve. Thank you to Elad Beber (Cymulate) for reporting these issues.

Affected: >= 0source →

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Assay MCP Server safe to use?: Assay MCP Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "@modelcontextprotocol/server-filesystem". Review the Security section above for details before installing.
How do I install Assay MCP Server?: Assay MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Assay MCP Server?: Assay MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Assay MCP Server actively maintained?: Assay MCP Server is actively maintained — last commit was 0 days ago. It has 2 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

8.7k 3

Iam Policy Autopilot90

IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.

361 1

io.github.peacprotocol/peac90

Signed receipts for agent, API, and MCP interactions. Portable and offline-verifiable.

11 5

MCP Security Weekly

Get CVE alerts and security updates for Assay MCP Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-rul1an-assay": {
      "args": [
        "-y",
        "@modelcontextprotocol/server-filesystem"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-rul1an-assay)](https://mcppedia.org/s/io-github-rul1an-assay)

Read me

What Assay MCP Server does

Your MCP agent calls read_file, exec, web_search — but should it, and what can you honestly prove about that run afterward?

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@modelcontextprotocol/server-filesystem' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Assay

Evidence compiler for agent review artifacts
Portable evidence receipts, verifiable bundles, and bounded Trust Basis claims for agent systems.

See It Work · Promptfoo JSONL · OpenFeature · CycloneDX ML-BOM · Quick Start · CI Guide · Discussions

Use Assay if you already have machine-readable AI outcomes or agent tool-call tests and want a small reviewable artifact boundary in CI.

Start with the path that matches what you already have:

You have	Use this when	What you get	Next click
Promptfoo JSONL from CI evals	You want smaller PR evidence than a full eval export	Eval outcome receipts, verified bundle, Trust Basis diff	Promptfoo JSONL
OpenFeature boolean `EvaluationDetails`	You want CI evidence for a runtime flag decision boundary	Decision receipt, verified bundle, Trust Basis diff	OpenFeature EvaluationDetails
CycloneDX ML-BOM model component	You want CI evidence for the model inventory/provenance boundary that existed	Inventory receipt, verified bundle, Trust Basis diff	CycloneDX ML-BOM
MCP tool calls	You are ready to put a policy file around tool execution	Allow/deny audit trail and evidence for observed tool behavior	MCP Quick Start
A GitHub PR gate	You want CI to block regressions from checked artifacts	Trust Basis diff, gate status, SARIF/JUnit-ready output	CI Guide

The core workflow is intentionally small: import or record a bounded outcome, bundle and verify it, compile trust-basis.json, then gate the Trust Basis diff. Assay does not make the upstream tool the source of truth; it makes the evidence boundary inspectable.

Trust Basis Gate
Status: OK
Bundles verified: 1
Regressed claims: 0

Assay is not a trust-score engine, a generic eval dashboard, or a hosted observability product. See What Assay is and is not for the boundary.

Is This For Me?

Yes, if you:

already have eval output, runtime decisions, inventory artifacts, or MCP tool-call tests
want a CI review artifact instead of a dashboard-only result
need bounded auditability, not a scalar trust badge

Not yet, if you:

need Assay to judge model correctness or policy quality for you
want a hosted dashboard as the primary product
want a compliance claim instead of a bounded evidence boundary

Install

cargo install assay-cli

CI: GitHub Action. Python SDK: pip install assay-it.

No hosted backend. No API keys for core flows. Deterministic: same input, same decision.

Evidence levels and non-goals

Trust claims use explicit *epistemology

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

55/100across 5 weighted dimensions

How we score →

0255075100

−45

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

2 open

CVE-2025-53110mediumCVSS 4

@modelcontextprotocol/server-filesystem vulnerability allows for path validation bypass via colliding path prefix

Affected: >= 0source →

CVE-2025-53109mediumCVSS 4

@modelcontextprotocol/server-filesystem allows for path validation bypass via prefix matching and symlink handling

Affected: >= 0source →

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Assay MCP Server safe to use?: Assay MCP Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "@modelcontextprotocol/server-filesystem". Review the Security section above for details before installing.
How do I install Assay MCP Server?: Assay MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Assay MCP Server?: Assay MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Assay MCP Server actively maintained?: Assay MCP Server is actively maintained — last commit was 0 days ago. It has 2 GitHub stars.