Overly broad OAuth scopes

AI security governance · MCP security

Severity

high

What it is

OAuth scopes include wildcards, admin access, or an excessive number of scopes, violating the principle of least privilege.

How Igris detects it

Igris's OAuth Configuration Checker flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris