Skip to content

Implement SEP-1024: MCP Client Security Requirements #1053

New issue
New issue
Closed
Closed
Implement SEP-1024: MCP Client Security Requirements#1053
Assignees
KKonstantinov
Labels
enhancementRequest for a new feature that's not currently supported
@felixweinberger

Description

@felixweinberger
felixweinberger
opened on Oct 30, 2025

This is a tracking issue for implementation of SEP-1024.

Summary

This SEP establishes comprehensive security requirements for MCP clients that support one-click local server installation and configuration. The TypeScript SDK needs to implement clear consent dialogs before executing server installation commands, display full command text without truncation, and provide strong recommendations for sandboxed execution environments using platform-appropriate technologies. Additionally, client implementations should provide security guidance for server developers regarding stdio transport usage and authorization token requirements for HTTP transport.

Related Issues & PRs

  • Implementation PRs: n/a
  • Related PRs: n/a
  • Related Issues: n/a

Metadata

Metadata

Assignees

Labels

enhancementRequest for a new feature that's not currently supported

Type

No type

Projects

2025-11-25 Implementation

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions