Model Context Protocol has prompt injection security problems - There’s a lot of security work TBD with MCP. // “The curse of prompt injection continues to be that we’ve known about the issue for more than two and a half years and we still don’t have convincing mitigations for handling it."