OWASP on Bruce on AI Engineeringhttp://www.heyuan110.com/tags/owasp/Recent content in OWASP on Bruce on AI EngineeringHugoenMon, 23 Feb 2026 10:00:00 +0800MCP Security Guide: Attack Patterns, Real CVEs, and Defense Strategies for AI Agentshttp://www.heyuan110.com/posts/ai/2026-02-23-mcp-security-guide/Mon, 23 Feb 2026 10:00:00 +0800http://www.heyuan110.com/posts/ai/2026-02-23-mcp-security-guide/<p><strong>518 official MCP Servers, 41% lacking authentication.</strong> This is not a hypothetical threat model — it is real data from a February 2026 security audit.</p> <p>The MCP (Model Context Protocol) registry exploded from 90 servers to 518 in just one month. The ecosystem is expanding far faster than its security infrastructure can keep up. While developers eagerly plug MCP Servers into their AI agents, attackers are watching the same door.</p>