Perplexity Says MCP Sucks (suthakamal.substack.com) AI

The author argues that Perplexity’s critique of MCP’s token overhead is directionally right but misses the bigger issue: MCP doesn’t provide trust-aware controls for where sensitive data goes after authorization, so different kinds of regulated data are treated identically. They propose adding sensitivity metadata to tool responses, a shared trust-tier registry for inference providers, and runtime enforcement (including redaction/blocking or attestation) to prevent unsafe routing. The piece also notes similar trust gaps in WebMCP and frames MCP’s performance debate as secondary to missing data-governance primitives.