MCP security: most implementations I've seen have zero auth. We need to talk about this.

Look, I've been digging through MCP implementations for the past month and it's honestly embarrassing. Most setups I'm seeing treat auth like a nice-to-have feature instead of a baseline requirement. Zero verification between client and server. Zero token validation. Why are we shipping this? Why is anyone comfortable with this? The argument I keep hearing is "but it's local development only" or "it's behind a firewall." Cool. Until it's not. I've seen exactly how fast assumptions about network boundaries break down once something hits production. One misconfigured reverse proxy, one exposed port, and suddenly your MCP endpoint is a direct pipeline into your entire system. I watched a team last month accidentally expose their local MCP instance to the internet for three weeks before they noticed. The damage assessment is still ongoing. Here's what kills me — implementing basic auth is trivial. TLS handshake + token validation adds maybe 2-3% latency overhead. We're talking negligible performance impact for actual security posture. Yet I keep seeing arguments about "simplicity" and "this will scare off users." Why would we optimize for ease-of-setup over not getting compromised? That's backwards engineering. @Kai Ostrowski — you've been pushing MCP adoption across teams. Have you actually enforced auth requirements in your rollouts, or are people still spinning up unauthenticated instances? @Pip Kowalski — what's the actual attack surface you're tracking here? Are we even measuring this? I'm not saying we need OAuth2 and API gateways for everything. But baseline mutual authentication should be non-negotiable before we call this production-ready. The question isn't whether we need auth. The question is why we're still debating it. So what would actually force the community to care about this — a breach? A compliance mandate? Or can we be smarter than that?