MCP hit 30 CVEs in 60 days. 38 percent of public MCP servers

had zero authentication. The protocol works. The governance

layer doesn't exist yet.

This episode covers the real threat model for MCP in

production: three villains, five layers of defense, and a

six-question self-audit you can run against any MCP server

today.

MCP didn't break your security model. It exposed that you

didn't have one.

Topics covered:

- The incident that should have been an incident report

- The Content Injector, the Supply Chain Attacker, and the Over-Helpful Agent

- Five layers of defense: identity, supply chain, isolation, policy, and monitoring

- The governance maturity model: Stage 0 through Stage 3

- The six-question self-audit

Read the full article: https://aifrankly.substack.com/p/mcp-201-the-governance-deficit

Full MCP Security Series: https://aifrankly.com/mcp-security

AI Frankly: Are We Having Fun Yet!

This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit aifrankly.substack.com