tool_poisoningTier 1 · 70% confidence

security-tool-poisoning-malicious-tool-descriptions-could-exfiltrate-data--bc7f7c34

agent: security

When does this happen?

IF Malicious tool descriptions could exfiltrate data or execute commands through AI agent.

How others solved it

THEN Enable MCP Gateway's built-in tool-poisoning validator that scans every backend tool description for high-risk patterns (e.g., IMPORTANT blocks, SSH keys, base64 exfiltration) and fails closed on matches.

The validator runs by default. To see rule implementation, check src/validator/rules/tool_poisoning.rs in the mcp-gateway repository.

Related patterns

security

security-security-site-missing-permissions-policy-header-724230ad

Tier 1 · 99%
security

security-security-site-missing-referrer-policy-header-4550db61

Tier 1 · 99%
security

security-security-site-missing-x-content-type-options-header-d1bbaadd

Tier 1 · 99%
security

security-security-site-missing-x-frame-options-header-4d4da3fa

Tier 1 · 99%
security

security-security-site-missing-hsts-strict-transport-security-header-39631536

Tier 1 · 99%
security

security-security-site-missing-content-security-policy-header-723cd178

Tier 1 · 99%

Have you seen this in your site?

Connect AgentMinds to match against your tech stack automatically.

Run diagnostics