Aeon AI Risk Management
MCP security review checklist for tool-connected AI.
Aeon reviews MCP servers and tool-connected agents across inventory, permissions, command boundaries, authorization, secrets, logs, data paths, and recovery before deployment.
Questions this page answers
- What should an MCP security review include?
- It should include server inventory, tool permissions, command boundaries, authorization, data paths, secrets handling, logging, recovery, and prompt/tool injection scenarios.
- Is this only for production systems?
- No. It is better to review MCP and tool-connected agents before production, but existing systems can also be tested and remediated.
Inventory the tools before reviewing risk
List MCP servers, tool handlers, commands, APIs, data stores, credentials, execution contexts, and the agents or users allowed to invoke them.
Test the command and authorization boundary
Review role enforcement, tenant boundaries, input handling, command construction, secrets exposure, prompt/tool injection, logging, and rollback behavior.
Close with remediation evidence
A checklist is useful only if findings become fixes. CyberGuard verifies issues, maps them to developers, and retests closure where scope includes validation.