Anthropic Calls MCP Flaw 'Expected Behavior' // AIDRAN

OX Security's disclosure follows a research process that began in November 2025 and ran through more than 30 responsible disclosure procedures before going public ^[1]. The standard for responsible disclosure exists precisely to give vendors time to act before exposure becomes universal. Anthropic's repeated response — that the MCP protocol behaves as designed — does not close that process. It eliminates it. There is no patch to wait for, no timeline to track, and no remediation path for the developers who have already deployed on the protocol.

Anthropic Called Its Own Protocol's Critical Flaw 'Expected Behavior'

Free reading limit reached

The Joke Community That Became a Barometer for War

The Token Wall AI Agents Keep Hitting Before Anyone Gets Paid

Medical AI's Bias Problem Reaches the Clinicians Who Use It

Copyright Law Has a Test for AI Music. It May Be Asking the Wrong Question.

When the Agent Wins, No One Can Grade the Answer

Military AI Hit Its Wartime Debut — the Conversation Barely Followed

WSB's Recession Theory Lives in the Posts That Were Deleted

The Retail Market Theory That Sounds Like a Punchline

Identical China-Taiwan Posts Signal Anxious Moment on r/Military

The Appeal as Unpaid Labor: AI Denials and Governance