Wildcard redirect URI

AI security governance · MCP security

Severity

medium

What it is

The OAuth redirect URI contains a wildcard, which could allow token theft via open redirect.

How Igris detects it

Igris's OAuth Configuration Checker flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris