Join us for the GenAI Security Project’s – Agentic AI Security Summit, Europe Dec 10 London

|

REGISTER NOW !
  • GEN AI SECURITY
  • resources
  • Whitepapers/Guides

CheatSheet – A Practical Guide for Securely Using Third-Party MCP Servers 1.0

  • November 4, 2025

About

The Practical Guide for Securely Using Third-Party MCP Servers from the OWASP GenAI Security Project provides a detailed framework for safely deploying and managing external Model Context Protocol (MCP) servers. It outlines the unique security risks introduced by connecting AI models to third-party tools and data sources, including tool poisoning, prompt injection, memory poisoning, and tool interference. The guide offers actionable mitigations covering authentication, authorization, client sandboxing, secure server discovery, and governance workflows, emphasizing least-privilege access and human-in-the-loop oversight.

Download

Additional Resources

OWASP Top 10 for Agentic Applications for 2026

OWASP GenAI Security Project – Solutions Reference Guide Q2_Q3’25

CheatSheet – A Practical Guide for Securely Using Third-Party MCP Servers 1.0
OWASP and the OWASP logo are trademarks of the OWASP Foundation, Inc. Unless otherwise specified, all content on the site is Creative Commons Attribution-ShareAlike v4.0 and provided without

warranty of service or accuracy. For more information, please refer to our General Disclaimer.  – Copyright © 2025 OWASP Foundation, Inc.

Scroll to Top