Safeguard
Tag

mcp

Safeguard articles tagged "mcp" — guides, analysis, and best practices for software supply chain and application security.

79 articles

AI Security

MCP Server Capability Declaration Audit

An MCP server tells the world what it can do through its capability declaration. Auditing those declarations catches drift, tool poisoning, and misconfiguration before an agent gets talked into using the wrong one.

Jan 28, 20267 min read
AI Security

MCP Server Discovery Protocol Security

MCP server discovery turns a client connection string into a live capability graph. The protocol mechanics that make this convenient also widen the blast radius when discovery is spoofed, tampered with, or silently reshaped mid-session.

Jan 22, 20266 min read
Agent Security

Anthropic mcp-server-git: Three CVEs That Chain to RCE via Prompt Injection

Three flaws in Anthropic's official Git MCP server let prompt injection in a README compromise the developer's machine. The chain shows how MCP servers leak authority.

Jan 22, 20266 min read
AI Security

Docker MCP Server: Setup and Security Considerations

Running a docker mcp server puts an AI agent's tool access inside a container boundary, which helps containment but doesn't remove the need to scope credentials and network access carefully.

Jan 22, 20265 min read
AI Security

AI Agent Security Risks: Why Autonomous Systems Are the Next Supply Chain Frontier

AI agents are consuming APIs, installing packages, and executing code autonomously. The security implications are massive and largely unaddressed.

Jan 20, 20266 min read
AI Security

The MCP Threat Model: What Actually Matters in 2026

Most MCP threat models confuse protocol risk with deployment risk. Here is what the real attack surface looks like after a year of production incidents.

Jan 18, 20267 min read
AI Security

Anthropic MCP Security Model: A Deep Dive

Anthropic's Model Context Protocol introduces a new trust boundary between agents and tools. Here is how the security model actually works in practice.

Jan 15, 20265 min read
AI Security

Securing Claude Code MCP Server Deployments

Claude Code MCP servers run with the privileges of the developer who invoked them. That makes deployment posture the entire security model.

Jan 12, 20267 min read
Agent Security

MCP Spec 2025-11-25: Tasks, URL Mode Elicitation, and What Defenders Must Watch

The November 25, 2025 Model Context Protocol release adds Tasks, formalises long-running work, and reshapes the audit story for enterprise MCP.

Dec 2, 20256 min read
Agent Security

MCPoison (CVE-2025-54136): How Cursor's Trust Model Failed Open

Check Point Research showed Cursor bound trust to MCP entry names, not contents. A swap-after-approval gave attackers persistent RCE on engineers' laptops.

Aug 12, 20256 min read
Agent Security

Supabase MCP and the Lethal Trifecta: When an Agent Has service_role

A Cursor user's Supabase MCP server was tricked by a support ticket into exfiltrating an integration_tokens table. The bug was not in MCP. It was in the trifecta.

Jul 23, 20257 min read
AI Security

Securing AI Agents: MCP Protocol Risks and Mitigations

The Model Context Protocol is transforming how AI agents interact with tools, but it introduces new attack surfaces. Here is what security teams need to understand.

Jul 22, 20256 min read
mcp (Page 6) — Safeguard Blog