mcp-obsidian
Filesystem-based Obsidian MCP that lets LLMs browse, search, read, write and edit vault Markdown without Obsidian running.
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for mcp-obsidian, derived from its capabilities.
AIVSS 8.3 ยท High
View MAESTRO 7-layer threat model โOverview
mcp-obsidian is a filesystem-based MCP server for Obsidian vaults, enabling LLMs to browse, search, read, write and edit Markdown notes directly on disk without Obsidian running. Security surface: it has read/write filesystem access to a note vault pointed at by OBSIDIAN_VAULT, so injected instructions could overwrite or exfiltrate personal notes.
Key features
- Direct filesystem access to a vault
- Read, write and edit Markdown notes
- Full-text search over notes
- No running Obsidian app required
Use cases
- Edit Obsidian notes with an agent
- Automate note-taking workflows