Popular MCP filesystem reference server fails basic AI tool-routing tests, audit finds
A developer recently tested routeproof, a tool that checks whether AI models correctly select the intended server function based on tool descriptions alone, against Anthropic's canonical MCP filesystem reference implementation. The audit revealed that the server's list_allowed_directories tool was consistently mis-selected for unrelated tasks such as reading a file and generating a recursive directory tree. Scoring between 3 and 6 out of 6 across two separate runs, the results also highlighted that AI tool routing is non-deterministic, meaning a single test pass can be misleading. The root cause was identified as an overly broad description for list_allowed_directories that failed to clarify what the tool does not handle. Adding explicit boundaries to the description — directing recursive-structure queries to directory_tree — was proposed as a straightforward fix.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in