> ## Documentation Index
> Fetch the complete documentation index at: https://docs.praison.ai/llms.txt
> Use this file to discover all available pages before exploring further.
# MCP CLI Tools Path Safety
> Workflow and deploy MCP tools accept only YAML files inside the current working directory
Workflow and deploy MCP tools accept only YAML files inside the current working directory for security.
```mermaid theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
graph LR
A[📄 file_path] --> B[🔍 _resolve_cwd_yaml_path]
B --> C{✅ Valid YAML in CWD?}
C -->|Yes| D[🟢 Allow]
C -->|No| E[🔴 ValueError]
classDef input fill:#6366F1,stroke:#7C90A0,color:#fff
classDef process fill:#F59E0B,stroke:#7C90A0,color:#fff
classDef success fill:#10B981,stroke:#7C90A0,color:#fff
classDef error fill:#8B0000,stroke:#7C90A0,color:#fff
class A input
class B,C process
class D success
class E error
```
## Quick Start
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# MCP tools accept bare YAML filenames
workflow_validate("project.yaml") # ✅ Works
workflow_show("config.yml") # ✅ Works
deploy_validate("deploy.yaml") # ✅ Works
```
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# These paths are rejected for security
workflow_validate("../config.yaml") # ❌ ValueError
workflow_validate("/etc/passwd") # ❌ ValueError
workflow_validate("subdir/file.yaml") # ❌ ValueError
```
***
## How It Works
Three MCP tools now enforce strict path validation:
| Tool | Purpose | Path Requirement |
| ------------------- | -------------------------- | -------------------- |
| `workflow_validate` | Validate workflow YAML | Bare filename in CWD |
| `workflow_show` | Display workflow content | Bare filename in CWD |
| `deploy_validate` | Validate deployment config | Bare filename in CWD |
```mermaid theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
sequenceDiagram
participant MCP as MCP Client
participant Tool as CLI Tool
participant Validator as _resolve_cwd_yaml_path
participant FS as File System
MCP->>Tool: call with file_path
Tool->>Validator: _resolve_cwd_yaml_path(file_path)
Validator->>Validator: Check path rules
alt Path valid
Validator->>FS: Read from CWD
FS-->>Validator: File content
Validator-->>Tool: Path object
Tool-->>MCP: Success result
else Path invalid
Validator-->>Tool: ValueError
Tool-->>MCP: Error message
end
```
***
## What Gets Refused
**Breaking Change**: Absolute paths and outside-CWD paths that previously worked are now rejected.
| Path Pattern | Example | Error Message |
| -------------------- | ---------------------------------- | ---------------------------------------- |
| Contains `/` or `\` | `subdir/file.yaml` | `invalid file_path: 'subdir/file.yaml'` |
| Contains NUL byte | `file\x00.yaml` | `invalid file_path: 'file\x00.yaml'` |
| Starts with `.` | `.hidden.yaml` | `invalid file_path: '.hidden.yaml'` |
| Not YAML extension | `config.json` | `file_path must be a .yaml or .yml file` |
| Absolute path | `/etc/passwd` | `invalid file_path: '/etc/passwd'` |
| Parent directory | `../config.yaml` | `invalid file_path: '../config.yaml'` |
| Resolves outside CWD | `symlink.yaml` → `../outside.yaml` | `invalid file_path: 'symlink.yaml'` |
***
## Migration
If you previously used these MCP tools with absolute paths or subdirectory paths:
```bash theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Before (worked previously)
workflow_validate("/home/user/project/workflows/main.yaml")
workflow_validate("workflows/deploy.yaml")
# After (required now)
cp /home/user/project/workflows/main.yaml ./main.yaml
cp workflows/deploy.yaml ./deploy.yaml
workflow_validate("main.yaml")
workflow_validate("deploy.yaml")
```
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Before
deploy_validate("configs/production.yaml")
# After
deploy_validate("production.yaml") # file must be in CWD
```
***
## Common Patterns
### Workflow Management
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Validate workflow in current directory
result = workflow_validate("workflow.yaml")
if "valid" in result:
content = workflow_show("workflow.yaml")
print(content)
```
### Deployment Validation
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Check deployment config
result = deploy_validate("deploy.yml")
if "valid" in result:
print("Deployment config is valid")
else:
print(f"Validation failed: {result}")
```
### Error Handling
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
try:
content = workflow_show("../outside.yaml")
except Exception as e:
print(f"Error: {e}")
# Error: invalid file_path: '../outside.yaml'
```
***
## Best Practices
Place workflow and deployment YAML files in the project root directory, not in subdirectories. This matches the MCP security model.
Since you can't use paths, use descriptive filenames like `production-deploy.yaml` instead of `deploy/production.yaml`.
Always call the validation tools before processing YAML files to catch configuration errors early.
Check for ValueError exceptions and provide helpful error messages to users when paths are rejected.
***
## Related
Learn about MCP protocol support
PraisonAI CLI command reference