Can tools be restricted globally or per directory (e.g. preventing only file reading/writing)?

[nohype]

Hi and thanks for the great project, it's very helpful indeed.

I'm wondering whether there is a possibility to put hard restrictions on the tools a server instance can use, either globally or for specific directories.
In my specific case, I need to prevent file reading/writing (without relying on an LLM behaving well and never doing it) for certain directories, while the directory and file listings should be accessible. (Strict confidentiality of file contents.)

Thanks in advance and apologies should I have overlooked something obvious.

Kind regards