CVE Tools
Back to feed
Bishop Fox ·EN-US Vendor research ResearchModel Context Protocol (MCP)

Otto Support - Logging and Visibility in MCP Servers

By Derek Rush··8 min read
TL;DR

otto-support ships with two log files side by side, a bare-bones default log and a full audit log, so a reader can see exactly what an investigator could recover after each attack class in this series. This entry walks through that comparison, pairs it with the EchoLeak case that mirrors the gap, and covers the structured logging controls that EU AI Act traceability requirements will soon make mandatory.…

Continue reading on Bishop Fox