As AI systems integrate more deeply with software supply chains and security tooling, the Model Context Protocol (MCP) helps define how models exchange context and invoke tools—but it also introduces new abuse paths.
The OWASP MCP Top 10 outlines critical concerns across the MCP lifecycle, including token mismanagement, privilege creep, tool poisoning, supply-chain tampering, command injection, intent-flow subversion, weak auth, poor telemetry, shadow MCP deployments, and context over-sharing. The project is positioned as a living document for developers, ML engineers, and security practitioners building context-aware, resilient agentic systems.
Official project page
https://owasp.org/www-project-mcp-top-10/
Repository
https://github.com/OWASP/www-project-mcp-top-10/