NewsCVE-2026-26118: Azure MCP Server SSRF — First Cloud MCP VulnerabilityTheHackerWire·high signalSSRF in Azure MCP Server Tools (CVSS 8.8) lets attackers steal managed identity tokens. First CVE targeting cloud-hosted MCP infrastructure.SourceSource pageTheHackerWire↳ Follow the threadStack layer / Threat patternCVE-2026-14748: SSRF in the mcp-wiki Server Disclosed July 5TheHackerWirePolicy dependency / Stack layerRoots, Sampling, and Logging are deprecated — new capabilities now ship as opt-in extensionsModel Context Protocol BlogPolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WireStack layer / Threat patternCut agent scraping token spend with Scrapling — adaptive element-signature relocation plus a built-in MCP serverGitHubStack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivPolicy dependency / Stack layerVercel Ships the Agent-Ops Layer: 'Eve' Framework for Natural-Language Agent Skills and 'Vercel Sandbox' to Fence In Data AccessThe AI InsiderStack layer / Threat patternApple Ships the Safari MCP Server — First Official Browser MCP From a Major VendorDevelopers DigestStack layer / Threat patternWindsurf's Devin Local Adds Editor Context Awareness and Persistent 'Always Allow' MCP GrantsReleasebot