The latest articles on DEV Community by Obot AI (@obot_ai). https://dev.to/obot_ai https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3954698%2F868082a1-4259-4ada-8e83-e552c0d5d063.png https://dev.to/obot_ai en Obot AI Fri, 29 May 2026 15:48:13 +0000 https://dev.to/obot_ai/mcp-security-has-gone-mainstream-4jn5 https://dev.to/obot_ai/mcp-security-has-gone-mainstream-4jn5 <p><em>By Shannon Williams, President &amp; Co-founder of <a href="https://obot.ai" rel="noopener noreferrer">Obot AI</a></em></p> <p>A few days ago our outside counsel forwarded me a risk explainer on MCP from a major law firm's technology transactions group. It was the third in a series they've been running on MCP — laying out a NIST-based control framework for deploying MCP connectors in regulated enterprises.</p> <p>That's not a developer audience. That's general counsel, CISOs, and procurement teams.</p> <p>A year ago, MCP was something you explained to enterprise architects from scratch. Now the questions have shifted from "what is this" to "we already have this in production, our auditors are asking, what's the control framework."</p> <p>MCP security has gone mainstream — and in this post I break down what that shift actually means and the four operational controls every organization deploying MCP needs to have in place.</p> <p><em>Originally published on <a href="https://obot.ai/blog/mcp-security-has-gone-mainstream/" rel="noopener noreferrer">obot.ai</a></em></p> security mcp ai Obot AI Thu, 28 May 2026 15:26:10 +0000 https://dev.to/obot_ai/hello-from-us-at-obot-ai-59n0 https://dev.to/obot_ai/hello-from-us-at-obot-ai-59n0 <p>Hey dev.to 👋</p> <p>We're Obot — an open-source platform built for teams that want to connect AI agents to real tools without the security and governance headaches that come with it.</p> <p>We started as an MCP Gateway, and #MCP is still at the core of what we do. But we've grown beyond that. Our latest release (<a href="https://obot.ai/blog/announcing-obot-platform-v0-22-0-centrally-managed-skills-fleet-scanning-and-enterprise-controls-for-mcp/" rel="noopener noreferrer">v0.22.0</a>, just shipped May 27) gets at a problem we keep hearing from teams: the "client zoo." A single company has users spread across Cursor, Claude, Copilot, and a half-dozen other AI clients — each with its own config model, its own skills directory, its own way of attaching MCP servers. Nobody has visibility into what's actually running on employee machines, and skills get duplicated and inconsistently authored across every team.</p> <p>v0.22.0 adds centrally managed skills, fleet scanning across AI clients and coding agents, and stronger enterprise controls for MCP. It's the beginning of a broader vision: a control plane for the whole AI tooling stack, not just MCP.</p> <p>We'll be posting regularly on:</p> <ul> <li>MCP fundamentals (great if you're just getting started)</li> <li>Building and deploying MCP servers</li> <li>Security and access control for agentic AI</li> <li>Managing AI tooling at enterprise scale</li> </ul> <p>We're developers first, sharing practical content — tutorials, explainers, and honest takes.</p> <p>If you're building with MCP or wrangling AI tooling across a team, follow along. And we'd genuinely love to know: <strong>what's the messiest part of managing AI tools across your org right now?</strong></p> <p>— The Obot team</p> mcp ai agentskills opensource