Audit any MCP server for tool-poisoning, prompt-injection, and data-exfiltration risk before connecting an agent.