Security

• Treat personal access tokens like passwords: never commit them or log them in plaintext.
• Use HTTPS only; rotate or revoke tokens you suspect are exposed.
• Each token is limited to one tool group—use separate tokens instead of over-scoping.
• Browser sessions use httpOnly cookies and are not used for MCP; MCP clients must send Bearer PATs.
• Any server or script that obtains a PAT can call /mcp as that user for that group—guard minting and membership accordingly.