Nothing verifies that a tool's description is what its publisher wrote, and researchers have repeatedly demonstrated poisoning attacks against MCP clients. CTMS is a signing and verification scheme that prevents these attacks at runtime.
#ctms
1 post
- Tool Metadata Poisoning: An Unresolved Attack Surface in MCP