SEP-1024: MCP Client Security Requirements for Local Server Installation#1025
Merged
SEP-1024: MCP Client Security Requirements for Local Server Installation#1025
Conversation
olaservo
reviewed
Jul 22, 2025
olaservo
reviewed
Jul 22, 2025
pcarleton
reviewed
Jul 22, 2025
pcarleton
requested changes
Aug 15, 2025
Member
pcarleton
left a comment
There was a problem hiding this comment.
I see the threats here as more general than just the "configuration", so I've left comments for how I think we could revise this to encompass more. lmkwyt.
Essentially, the threat of a malicious command to start up a server is a very specific version, but if you can control the code of the server itself, an attacker might as well just do it's malicious bits in the server code.
This adjusts a few sections and adds a few more mitigation points.
I didn't really touch on "install from trusted sources", but that might fit in there now.
Co-authored-by: Paul Carleton <paulc@anthropic.com>
Co-authored-by: Paul Carleton <paulc@anthropic.com>
Co-authored-by: Paul Carleton <paulc@anthropic.com>
Co-authored-by: Paul Carleton <paulc@anthropic.com>
pcarleton
requested changes
Aug 19, 2025
Co-authored-by: Paul Carleton <paulc@anthropic.com>
Contributor
|
SEP was accepted by vote by core maintainers. |
dsp-ant
added a commit
that referenced
this pull request
Jan 22, 2026
Add 10 SEPs that were missed during the initial migration in PR #1804: - SEP-991: OAuth Client ID Metadata Documents (Final) - SEP-1024: MCP Client Security Requirements (Final - PR #1025 merged) - SEP-1034: Default values for elicitation schemas (Final) - SEP-1036: URL Mode Elicitation (Final) - SEP-1303: Input Validation Errors (Final) - SEP-1577: Sampling With Tools (Final) - SEP-1613: JSON Schema 2020-12 Default Dialect (Final) - SEP-1686: Tasks (Final) - SEP-1699: SSE Polling via server-side disconnect (Final) - SEP-1730: SDKs Tiering System (Final) Note: SEP-1309 (Specification Version Management) was NOT included as PR #1404 implementing it is still open. Also fixes formatting issues in SEP metadata (Type, Author fields).
dsp-ant
added a commit
that referenced
this pull request
Jan 22, 2026
Add 10 SEPs that were missed during the initial migration in PR #1804: - SEP-991: OAuth Client ID Metadata Documents (Final) - SEP-1024: MCP Client Security Requirements (Final - PR #1025 merged) - SEP-1034: Default values for elicitation schemas (Final) - SEP-1036: URL Mode Elicitation (Final) - SEP-1303: Input Validation Errors (Final) - SEP-1577: Sampling With Tools (Final) - SEP-1613: JSON Schema 2020-12 Default Dialect (Final) - SEP-1686: Tasks (Final) - SEP-1699: SSE Polling via server-side disconnect (Final) - SEP-1730: SDKs Tiering System (Final) Note: SEP-1309 (Specification Version Management) was NOT included as PR #1404 implementing it is still open. Also fixes formatting issues in SEP metadata (Type, Author fields).
shivankgoel
pushed a commit
to shivankgoel/modelcontextprotocol
that referenced
this pull request
Feb 16, 2026
…ontextprotocol#2136) Add 10 SEPs that were missed during the initial migration in PR modelcontextprotocol#1804: - SEP-991: OAuth Client ID Metadata Documents (Final) - SEP-1024: MCP Client Security Requirements (Final - PR modelcontextprotocol#1025 merged) - SEP-1034: Default values for elicitation schemas (Final) - SEP-1036: URL Mode Elicitation (Final) - SEP-1303: Input Validation Errors (Final) - SEP-1577: Sampling With Tools (Final) - SEP-1613: JSON Schema 2020-12 Default Dialect (Final) - SEP-1686: Tasks (Final) - SEP-1699: SSE Polling via server-side disconnect (Final) - SEP-1730: SDKs Tiering System (Final) Note: SEP-1309 (Specification Version Management) was NOT included as PR modelcontextprotocol#1404 implementing it is still open. Also fixes formatting issues in SEP metadata (Type, Author fields).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Addresses #1024