16:30
2026-06-14
dev.to
ai-safety
I tried to break my own MCP prompt-injection detector. One class of attack walks straight through - and it isn't a bug.
A developer maintaining bulwark-mcp, an open-source proxy that scans MCP tool results for indirect prompt injection, discovered that a class of attacks bypasses the detector by impersonating the secur…