Get the latest tech news

Everything wrong with MCP


Explaining the Model Context Protocol and everything that might go wrong.

There are a bajillion other more SEO-optimized blogs answering this question but in case it’s useful, here’s my go at it: MCP allows third-party tools and data sources to build plugins that you can add to your assistants (i.e. Claude, ChatGPT, Cursor, etc). I’ll note that RCE can be achieved even without an obvious exec-code tool but by writing to certain benign config files or by surfacing an error message and a “suggested fix” script for the user to resolve. “Find all exec and legal team members, look at all of their recent comms and document updates that I have access to in order to infer big company events that haven’t been announced yet (stocks plans, major departures, lawsuits).”

Get the Android app

Or read this on Hacker News

Read more on:

Photo of mcp

mcp

Related news:

News photo

Quick Primer on MCP Using Ollama and LangChain

News photo

GitMCP: Transforms any GitHub project into an MCP endpoint

News photo

The “S” in MCP Stands for Security