First study of 1,899 MCP servers finds eight distinct vulnerabilities (only three traditional), 7.2% with general issues, 5.5% with tool poisoning, and 66% with code smells, urging MCP-specific security practices.
Title resolution pending
2 Pith papers cite this work. Polarity classification is still indexing.
2
Pith papers citing it
citation-role summary
baseline 1
citation-polarity summary
roles
baseline 1polarities
baseline 1representative citing papers
Large-scale analysis of 1.07 million npm packages shows 21.6% have at least one vulnerable dependency, with the top 23 vulnerabilities accounting for 50% of cases and an average 4-year-11-month fix delay.
citing papers explorer
-
Model Context Protocol (MCP) at First Glance: Studying the Security and Maintainability of MCP Servers
First study of 1,899 MCP servers finds eight distinct vulnerabilities (only three traditional), 7.2% with general issues, 5.5% with tool poisoning, and 66% with code smells, urging MCP-specific security practices.
-
Original Sin of npm: A Study on Vulnerability Propagation in JavaScript Dependency Networks
Large-scale analysis of 1.07 million npm packages shows 21.6% have at least one vulnerable dependency, with the top 23 vulnerabilities accounting for 50% of cases and an average 4-year-11-month fix delay.