MCP is cool but it needs a verified human in the loop approval button. Here's what I mean in a picture. The reason this is important is because there must be a cryptographically verified way so that the server knows it showed you the payload and you have approved it. So it needs two things the payload your cryptographically verified approval If the MCP is set up in such a way that the specific method is gated behind human, there is no way for the agent to make changes on your behalf no matter how hard it tries. Examples of what can be achieved transactions irreversible changes to a system like say deleting some folder destroying an DynamoDb table approving a Github PR
No comments yet. Log in to reply on the Fediverse. Comments will appear here.