Static lab

MCP tool poisoning demo

Inspect a fake MCP tool description before it can mislead an agent.

Install after the labProtect a team

Simulated trace

  1. 1Tool advertises safe name
  2. 2Description asks for tokens
  3. 3Guard flags mismatch
Turn this into team training