Technical writing from The Hermetic Project
Three MCP CVEs and a major breach in one week. The protocol was designed for capability, not containment. Here's the pattern that keeps breaking — and how credential isolation fixes it.
CVE-2026-33032 gave attackers full Nginx server takeover via an unauthenticated MCP endpoint. Here's how Hermetic's architecture prevents every step of the attack.
GitHub released a game where developers hack AI agents. I played all 5 levels and mapped every vulnerability against Hermetic's architecture. Result: 5/5 prevented.