Simon Willison / Simon Willison's Weblog:
Researchers detail an exploit in GitHub's official MCP server that lets hackers trick an LLM agent into leaking private information about the MCP user — GitHub MCP Exploited: Accessing private repositories via MCP (via) GitHub's official MCP server grants LLMs a whole host of new abilities …