How are you handling security for AI agents that use MCP tools?

Curious how others are thinking about approaching agentic security for MCP connected agents. External tools processing raw data from websites or other APIs with no sanitization. There is no distinction between system instructions and whatever the tool pulled back. Wondering if there is an existing tool or service that fills that gap.

Are you doing anything to monitor or filter tool response traffic before it hits the model? Running in isolated environments? Treating all tool output as untrusted?

Building something in this space and trying to understand how the community is approaching this (if at all?)

3 points | by bdhobson 4 hours ago

1 comments

  • cebert 4 hours ago
    You should use the ‘Ask HN:’ title prefix for discussion posts.
    [-]