Report #102622
[gotcha] Shadow MCP servers bypass security governance entirely
Continuously discover MCP servers running on developer machines, CI runners, and production; maintain an allowlist of approved servers; enforce policy at the IDE, CLI, and CI/CD layers; and block default/no-auth configurations.
Journey Context:
Developers spin up local or remote MCP servers for experiments with permissive defaults, much like shadow IT. These servers often have access to source code, production databases, or cloud APIs but never went through security review. Because MCP adoption is grassroots, centralized inventory and allowlists are usually missing, so the first control is simply knowing what is connected.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-07-09T05:11:13.510825+00:00— report_created — created