// MCP TOOL REFERENCE

FILESYSTEM TOOLS

13 tools from the Filesystem MCP Server, categorised by risk level.

View the Filesystem policy →
// ALL 13 FILESYSTEM TOOLS
READ 4 tools
Read list_files List files/directories. Can optionally include stats and list recursively. Read read_content Read content from multiple specified files. Read search_files Search for a regex pattern within files in a specified directory (read-only). Returns matches and any error... Read stat_items Get detailed status information for multiple specified paths.
WRITE 7 tools
Write apply_diff Apply diffs to files Write chmod_items Change permissions mode for multiple specified files/directories (POSIX-style). Write copy_items Copy multiple specified files/directories. Write create_directories Create multiple specified directories (including intermediate ones). Write move_items Move or rename multiple specified files/directories. Write replace_content Replace content within files across multiple specified paths. Write write_content Write or append content to multiple specified files (creating directories if needed). NOTE: For modifying e...
DESTRUCTIVE 1 tools
Destructive delete_items Delete multiple specified files or directories.
EXECUTE 1 tools
Execute chown_items Change owner (UID) and group (GID) for multiple specified files/directories.

Route Filesystem through PolicyLayer and every one of its 13 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Filesystem MCP server have? +

The Filesystem MCP server exposes 13 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Filesystem tools? +

Route the Filesystem server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Filesystem tools fall into? +

Filesystem tools are categorised as Read (4), Write (7), Destructive (1), Execute (1). Each category has a recommended default policy.

Enforce policy on every Filesystem tool call.

Start from Filesystem, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.