This doesn't look like an MCP backdoor. It looks like a supply chain attacks on an unofficial mcp tool.
It's definitely not what we are worried about with MCP.
This doesn't look like an MCP backdoor. It looks like a supply chain attacks on an unofficial mcp tool.
It's definitely not what we are worried about with MCP.
This is the comment on here that matters. Supply chain attacks happen all the time. Malicious PyPI packages being one classic example.
This is not about how stupid MCP is, it's about how stupid people can be. And anyone mucking about with agentic workflows, through contractors or not, should be responsible for the code their machines run. Period.