Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Why does the MCP server or cursor have service_role?

I don't see why that's necessary for the application... so how about the default is for service_role not to be given to something that's insecure?



Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: