Categories
May 07, 2026
Enforcing MCP tool annotation policies with Cedar
MCP tool annotations declare what a tool does. Here’s how to enforce Cedar policies against those declarations using Stacklok’s ToolHive Kubernetes operator.
May 06, 2026
Inside Dockyard: How Stacklok + Cisco AI Defense are securing MCP servers and skills
Stop shipping unscanned MCP servers and hoping for the best. Dockyard gives every server signatures, SBOMs, and security scans before it reaches your agents.
May 05, 2026
How to evaluate MCP runtimes against the OWASP Top 10
The OWASP MCP Top 10 reads like ten distinct problems, and most coverage treats them that way: ten boxes to check, ten features to ship. Token mismanagement, tool poisoning, and …
May 04, 2026
Shadow MCP: the AI governance problem hiding in plain sight
Most enterprises believe they have a handle on their MCP deployments. They’re usually wrong, and often by an order of magnitude. Here’s what you’ll learn in this post: The number …
April 29, 2026
ToolHive grows up: What the CRD graduation to v1beta1 means for your cluster
ToolHive’s CRDs graduate to v1beta1, a stability commitment built on seven months of new auth, composition, discovery, and observability features.
April 22, 2026
Stacklok and SUSE bring Linux infrastructure management to your AI agent
Managing Linux infrastructure at scale is hard enough without having to context-switch between your AI coding assistant and a web UI every time you need to check on a system. …