One of the most terrible standards ever made and when used, causes this horrific security risk and source code leakage on GitHub, with their official MCP server.
And no-one cares.
wild Wild West indeed. This is going to be so much fun watching the chaos unfold.
I'm already imagining all the stories about users and developers getting robbed of their bitcoins, trumpcoins, whatever. Browser MCPs going haywire and leaking everything because someone enabled "full access YOLO mode." And that's just what I thought of in 5 seconds.
You don't even need a sophisticated attacker anymore - they can just use an LLM and get help with their "security research." It's unbelievably easy to convince current top LLMs that whatever you're doing is for legitimate research purposes.
And no, Claude 4 with its "security filters" is no challenge at all.