MCP, Functions and Security | Development with AI Tools
ShaBoncuku1
10 views
32 slides
Oct 22, 2025
Slide 1 of 32
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
About This Presentation
Amsterdam PHP October 2025 Talk
Slide Content
DEVELOPMENT
WITH AI TOOLS
October
Suha Boncukcu
@suhaboncukcu
2025
MCP x Functions x
Security
WITH AI TOOLS
October
Suha Boncukcu
@suhaboncukcu
2025
MCP x Functions x
Security
01. LLMs and their problems
A. Missing Context
B. Lack of functionality
C. Solution
02. Security
A. Tool poisoning
B. Tool hijacking
C. Rug pulling
D. Direct prompt injection
E. Indirect prompt injection
F. Policy injection
G. Code injection
H. Multimodal injection
03. Discussions & Thanks
CONTENTS
A. Missing Context
B. Lack of functionality
C. Solution
02. Security
A. Tool poisoning
B. Tool hijacking
C. Rug pulling
D. Direct prompt injection
E. Indirect prompt injection
F. Policy injection
G. Code injection
H. Multimodal injection
03. Discussions & Thanks
CONTENTS
“
MISSING CONTEXT
Missing context is a real problem for an LLM
with a cuto date.
Even websearch does not help at all times
since sometimes what you mean is dierent
than what the world means.
Steve Jobs
You can’t connect the dots looking
forward; you can only connect them
looking backwards.
MISSING CONTEXT
Missing context is a real problem for an LLM
with a cuto date.
Even websearch does not help at all times
since sometimes what you mean is dierent
than what the world means.
Steve Jobs
You can’t connect the dots looking
forward; you can only connect them
looking backwards.
They don’t know about currently happening
things without any extra tools.
A year too late
things without any extra tools.
A year too late
They are not allowed to access your
context.
My database definitely doesn’t have a table
called auth_logins.
context.
My database definitely doesn’t have a table
called auth_logins.
Calculations might dier from context to
context
I know adults half my size
context
I know adults half my size
“
LACK OF FUNCTIONALITY
It’s nice to talk with somebody that knows
everything.
Will it be a good assistant when it comes to
action?
Alan Kay
Simple things should be simple,
complex things should be possible.
LACK OF FUNCTIONALITY
It’s nice to talk with somebody that knows
everything.
Will it be a good assistant when it comes to
action?
Alan Kay
Simple things should be simple,
complex things should be possible.
CHALLENGE 1
Send an email to Opek service to tell
them they did a terrible job.
CHALLENGE 2
Please call my mom and apologize for
not visiting her more often. Make sure
you’re kind and also order a bouquet of
daisies.
CHALLENGE 3
The oice is quite cold. Please arrange a
beer environment. I’m also done with
the living room, you can turn the heater
o over there.
Send an email to Opek service to tell
them they did a terrible job.
CHALLENGE 2
Please call my mom and apologize for
not visiting her more often. Make sure
you’re kind and also order a bouquet of
daisies.
CHALLENGE 3
The oice is quite cold. Please arrange a
beer environment. I’m also done with
the living room, you can turn the heater
o over there.
“
SOLUTIONS
Now it’s time to leverage what we have been
doing all those years!
Richard James
Engineering problems are
under-defined; there are many
solutions, good, bad, and indierent.
The art is to arrive at a good solution.
SOLUTIONS
Now it’s time to leverage what we have been
doing all those years!
Richard James
Engineering problems are
under-defined; there are many
solutions, good, bad, and indierent.
The art is to arrive at a good solution.
MCP
(Model
Context
Protocol)
(Model
Context
Protocol)
OpenAI
Agents
SDK
Agents
SDK
MCP IMPLEMENTATION
MCP IMPLEMENTATION
MCP IMPLEMENTATION
Agents SDK IMPLEMENTATION
AGENTS SDK
IMPLEMENTATION
IMPLEMENTATION
AGENTS SDK
IMPLEMENTATION
IMPLEMENTATION
“
SECURITY
With great power comes with great
responsibility.
Bruce Schneier
Security is not a product, but a process.
SECURITY
With great power comes with great
responsibility.
Bruce Schneier
Security is not a product, but a process.
TOOL POISONING
TOOL HIJACKING
RUG PULLING
RUG PULLING
DIRECT PROMPT INJECTION
DIRECT PROMPT INJECTION
DIRECT PROMPT INJECTION
INDIRECT PROMPT
INJECTION
INJECTION
INDIRECT PROMPT
INJECTION
INJECTION
POLICY INJECTION
CODE INJECTION
MILTI-MODAL INJECTION
MILTI-MODAL INJECTION
“
THANKS!
Everything changed while you were listening
this talk.
Now, nothing is relevant anymore.
Heraclitos
The only constant is change.
THANKS!
Everything changed while you were listening
this talk.
Now, nothing is relevant anymore.
Heraclitos
The only constant is change.
Tags
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 10
- Slides 32
- Age 40 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
45 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
19 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
23 views