Overly broad OAuth scopes
AI security governance · MCP security
Severity
high
What it is
OAuth scopes include wildcards, admin access, or an excessive number of scopes, violating the principle of least privilege.
How Igris detects it
Igris's OAuth Configuration Checker flags this during MCP security scans of your configuration.
References
Related MCP security rules
Secure your AI estate with Igris