Security · 1h ago
Open-source MCP security proxy improves from 9% to 63% attack coverage via benchmark-driven development
An open-source security proxy for AI agents using the Model Context Protocol (MCP) improved its attack coverage from 9% to 63% by iterating against a custom benchmark. The benchmark includes 24 attack vectors with matched benign controls to avoid false positives. The proxy, mcp-bastion, now blocks or detects most known MCP attacks, demonstrating a data-driven approach to AI agent security.
Meridian48 take
The benchmark-driven loop is a smart approach, but 63% coverage still leaves significant gaps, and real-world attacks may evolve faster than the benchmark.
Read the full reporting
From 9% to 63%: Letting a Benchmark Build a Better MCP Security Proxy →
DEV Community
ai-agent-securitymcp-security