From a fresh session:

initial prompt: Start a new typescript file. It will be used for data science purposes

second prompt: Implement that "that thing that groups data points into similar groups"

The output was a full function implementing K-means (along with a Euclidean distance function).

https://chatgpt.com/share/68420bd4-113c-8006-a7fe-c2d0c9f91d...

>It will be used for data science purposes

Doesn't this ruin / ignore the point we're discussing? I don't think anyone thought otherwise?

Not all MCP servers are run locally. If you are hosting an MCP server for others to use, then you absolutely need to be aware of these attacks.

A recent example from HN is GitMCP[0]

[0] - https://news.ycombinator.com/item?id=43573539

> Also, how is this relevant to the submission?

The title of the submission states "Auto pick LLMs based on your prompt".

The GP provided a prompt where auto picking an LLM would possibly help. Seems relevant to me. Even if the answer from the best LLM is, "This isn't directly possible, here are alternatives".