Discussion: I built a free security scanner for MCP servers finds open auth, TLS issues, prompt injection in too

Saw an interesting discussion on r/MCP about this — wanted to bring it here. **Original topic:** I built a free security scanner for MCP servers finds open auth, TLS issues, prompt injection in tool descriptions, and more > I built a free tool to audit MCP servers for security issues before you ship them. Paste your server URL and the scanner instantly runs 20+ checks across 6 key categories: * **Transport Security** * **Authentication & Access** * **MCP Protocol** * **Information Disclosure** * **Security H... What are your thoughts? Has anyone here dealt with MCP server? --- *Discuss more at [0n MCP](https://www.0nmcp.com) — the hub for [multi-agent AI systems](https://www.0nmcp.com).*