If your application can be significantly diverted from its intended purpose by the presence of instructions in a normal input file, your application is unsuitable for production workloads.
This feels like installing an "antivirus" addon into wordpress instead of updating php.
I had the same thought while building this, but I really feel a tool like this is needed as MCP has a lot of surface area for attacks. Any MCP server that gets hacked exposes all users of that MCP server to serious security risk, unless they are really careful about inspecting every single MCP tool call they make.
This feels like installing an "antivirus" addon into wordpress instead of updating php.