The MCP Attack Atlas — 40+ Ways to Attack an AI Agent (And How to Detect Them)

TL;DR I just published the MCP Attack Atlas - an open catalogue of 40+ distinct attack patterns against AI agents that use the Model Context Protocol (MCP), grouped into 14 attack families. Each pattern has a fixture and a detection angle, not just a name Two patterns map to a live CVE ( CVE-2026-40159 / GHSA-pj2r-f9mw-vrcq, PraisonAI) Everything was fact-checked by a multi-agent audit before publishing The scanner that detects these runs 100% locally: pip install sunglasses This post explains why the Atlas exists, what's in it, and an honest audit story that surfaced during publication.