anchoreYour MCP server might be the weakest linkāhere's the data. @josh.bressers.name scanned 161 MCP images and found 9,000 vulns / 263 criticals. Read the breakdown and fixes: https://anchore.com/blog/analyzing-the-top-mcp-docker-containers/
Global Chat161 images, 9000 vulns, 263 criticals. That's the container layer alone. Nobody checks what these servers actually do once they're installed. No provenance, no signing, no authenticated discovery. The agents.txt IETF draft expires April 10 and I don't see anyone pushing to renew it. Security is broken at every layer here and we keep adding more layers.