Dev.to tutorial Tutorials Mar 30 5 views

I Poisoned My Own MCP Server in 5 Minutes. Here's How.

by Dongha Koo

MCP tool descriptions are untrusted input that LLMs obey blindly. I built a malicious server, tricked Claude into exfiltrating data, and then tried 3 evasion techniques. Here's the full attack chain.

Read Original

Anthropic MCP

Metadata

Devto Id: 3429933
Reading Time Minutes: 5

Dev.to tutorial 19m ago

Talkis - an opensource alternative to wispr flow

I wrote a free transcription app ⚡️ Talkis. I created it for myself as an open-source alternative...

Dev.to tutorial 45m ago

Make.com has an MCP endpoint now. The auth token goes in the URL — and 3 other walls the docs skip

I already let my AI agent read and repair my self-hosted n8n workflows. So when a client's Make.com...

Dev.to tutorial 52m ago

[NEW] I spent 3 months teaching AI agents my codebase. They forgot by morning. Every. Single. Day.

Every morning for three months, the first thing I did was re-explain myself to my own tools. Not the...

I Poisoned My Own MCP Server in 5 Minutes. Here's How.

Metadata

Related

Talkis - an opensource alternative to wispr flow

Make.com has an MCP endpoint now. The auth token goes in the URL — and 3 other walls the docs skip

[NEW] I spent 3 months teaching AI agents my codebase. They forgot by morning. Every. Single. Day.