Semver range instead of exact version

AI security governance · MCP security

Severity

low

What it is

A version string uses range operators (^, ~, >=) instead of an exact pinned version.

How Igris detects it

Igris's Version Pinning Checker flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris