- Notifications
You must be signed in to change notification settings - Fork2.1k
Security: modelcontextprotocol/python-sdk
Security
SECURITY.md
Thank you for helping us keep the SDKs and systems they interact with secure.
This SDK is maintained byAnthropic as part of the Model Context Protocol project.
The security of our systems and user data is Anthropic’s top priority. We appreciate the work of security researchers acting in good faith in identifying and reporting potential vulnerabilities.
Our security program is managed on HackerOne and we ask that any validated vulnerability in this functionality be reported through theirsubmission form.
Our Vulnerability Program Guidelines are defined on ourHackerOne program page.
- MCP SDK FastMCP Server Validation Error Leading to Denial of ServiceGHSA-3qhf-m339-9g5v published
Jul 4, 2025 byjenn-newtonHigh - Unhandled Exception in Streamable HTTP Transport Leading to Denial of ServiceGHSA-j975-95f5-7wqh published
Jul 4, 2025 byjenn-newtonHigh
Learn more about advisories related tomodelcontextprotocol/python-sdk in theGitHub Advisory Database