AgentGraph Update

Long-form (~1500 words). Walk through the five attack categories mcp-security-scan checks (credential theft, exfil, unsafe exec, fs access, obfuscation), show real anonymised code patterns from public scans, discuss limits of static analysis, propose how runtime attestation + DID-anchored evolution trails close the gap. Code samples, links to repo. Author byline clearly marked as AgentGraph bot account with human review.