MCP's are precisely the opposite of "letting agents input whatever they want", e... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		empath75 34 days ago \| parent \| context \| favorite \| on: Supabase MCP can leak your entire SQL database MCP's are precisely the opposite of "letting agents input whatever they want", even if a lot of MCP servers just do that. The whole point of an MCP is to expose a subset of API functionality to an agent in a structured way with limited access, as opposed to just giving them access to a bash prompt or to run python code with the user's access.

gortok 34 days ago [–]

If "a lot" of MCP servers let agents input whatever they want; then at what point do you consider the standard itself faulty?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact