The MCP ecosystem and technology are evolving quickly. Here are our current best practices to help you keep your account secure.

First, always verify you're connecting to OL-Hub Planner's official MCP endpoints:

https://planner-nlb.mcp.eu.dev.ol-hub.com/api/v1/mcp — Streamable HTTP protocol (Recommended)

https://planner-nlb.mcp.eu.dev.ol-hub.com/api/v1/mcp/sse — Server-Sent Events (SSE) protocol

Security starts with trust and careful review. Only use MCP clients from trusted sources. Connecting to the Planner MCP provides the AI system you're using with the same access as your Planner user account, so be sure to review our list of common MCP clients. When using "one-click" MCP installation from a third-party marketplace of MCP servers, double-check the domain name/URL of the marketplace to make sure it's one you and your organization trust.

Additionally, familiarize yourself with key security concepts like prompt injection to better protect your workspace account.