agent-audit-kit · microsite
Numbered, dated entries documenting real agent-security findings and the agent-audit-kit rules that detect them. Auto-feed at feed.xml. Disclosure cadence: one per month, more when the world hands us one.
Unsanitised MCP STDIO config is RCE-by-design across the MCP ecosystem. Any framework that ingests user-controlled MCP server definitions and spawns STDIO subprocesses without sandbox enforcement gives an attacker arbitrary shell execution on the host. agent-audit-kit's AAK-MCP-001 rule family detects this class at static-analysis time.