😎 Contributing
@Puliczek
😎 Contributing について
🔥🔒 Awesome MCP (Model Context Protocol) Security 🖥️
基本情報
設定
ツール
ツールは検出されませんでした
ツールは README から自動的に抽出されます。メンテナーは ## Tools という見出しの下に記載することで、このタブに反映できます。
概要
What is Awesome MCP Security?
Awesome MCP Security is a curated list of everything related to Model Context Protocol (MCP) security – including official security considerations, academic papers, videos, articles, tools, security servers, and other resources.
How to use Awesome MCP Security?
Browse the categorized sections (Security Considerations, Papers, Videos, Articles, Tools, Security Servers, Other Resources) to find relevant security information, research, and tools. Each entry links directly to the original source.
Key features of Awesome MCP Security
- Aggregates official MCP security best practices and specifications
- Lists academic papers on MCP security threats and mitigations
- Curates videos covering MCP auth, enterprise security, and attacks
- Collects articles, X threads, and blog posts on real‑world vulnerabilities
- Highlights security tools and MCP security servers
- Includes a changelog and contribution guidelines (via badge)
- Tracks the evolving authorization specification (OAuth replacement)
Use cases of Awesome MCP Security
- Discover known attack vectors and exploit demonstrations for MCP
- Find research papers on systematic MCP security analysis
- Learn about tool poisoning, prompt injection, and data exfiltration risks
- Explore security tools and guardrails for MCP deployments
- Stay updated on best practices and specification changes
FAQ from Awesome MCP Security
What are the official security considerations for MCP?
Servers MUST validate tool inputs, implement access controls, rate‑limit invocations, and sanitize outputs. Clients SHOULD prompt for user confirmation, validate tool results, implement timeouts, and log usage.
Is the MCP authorization specification finalized?
No. The current auth specification (as of 2025-03-26) is being replaced by a more robust specification; the community is discussing the new version in a GitHub pull request.
What types of resources are included?
The list covers academic papers, videos, articles, blog posts, X threads, tools, and MCP security servers – all focused on MCP security.
Are there known real‑world attacks documented?
Yes. The curated articles include real incidents such as MCP server malware that steals secrets, tool poisoning, ANSI terminal code deception, and exploitation of popular MCP servers (e.g., Slack, GitHub, Asana, Neon).
Where can I find MCP security tools and servers?
The list includes a dedicated section "Tools and code" and "MCP Security Servers" with links to open‑source projects and security layers built for MCP.
「開発者ツール」の他のコンテンツ
Code Index MCP
johnhuang316A Model Context Protocol (MCP) server that helps large language models index, search, and analyze code repositories with minimal setup
JetBrains MCP Proxy Server
JetBrainsA model context protocol server to work with JetBrains IDEs: IntelliJ, PyCharm, WebStorm, etc. Also, works with Android Studio
nuxt-mcp / vite-plugin-mcp
antfuMCP server helping models to understand your Vite/Nuxt app better.
Huoshan Test
volcengineDeepwiki MCP Server
regenrek📖 MCP server for fetch deepwiki.com and get latest knowledge in Cursor and other Code Editors
コメント