How secure is MCP, really?

Really excited about the possibilities with MCP—but is it actually ready for safe use in production? Not so sure. Elena Cross put together a great summary of the potential security issues.

“MCP is not secure by default. And if you’ve plugged your agents into arbitrary servers without reading the fine print — congrats, you may have just opened a side-channel into your shell, secrets, or infrastructure.”

Source: elenacross7.medium.com