Prompt Injection: MCP Servers

Why MCPs are dependencies, not features — and what supply-chain discipline looks like applied to AI tool servers. Tool-result injection, tool definition tampering, plugin bundles as multi-component installs, chain-of-tool attacks, and the 5-minute install vetting pass.