#protocol_security

1. MCP Security Probe Exposes Critical Session Vulnerabilities: Fixation, Predictability, Unauthenticated Termination

The Model Context Protocol (MCP) security verification tool currently lacks critical probes for session-based attacks, leaving servers exposed to potential hijacking and unauthorized access. The official TODO.md for Phase 2 explicitly lists three unchecked security checks that the `mcp probe` command should perform but...