What is MCP, and why does it matter for AI agents?

Tools, not API docs

The naive way is to give an agent your REST docs and let it figure out the calls; it works in a demo and drifts in production. MCP declares each operation as a typed tool the agent invokes directly — it stops guessing how your API works and picks from a menu you control.

One server per domain, scoped per caller

A real back office is many systems. One MCP server per domain keeps each tool list short and separately permissioned, so an agent only sees the tools its principal may use. A model also reasons worse when handed hundreds of irrelevant tools at once.

An identity on every call

Every tool call should carry a per-principal token, not a shared god-key, so actions are attributable and access is enforced below the tool. The discipline is the same as running a microservice fleet, not wiring one demo server.

Straight answers.

Is MCP just a new API standard?

It's an interface for agents specifically: discovery + typed tools + a uniform call shape, so a model can use your systems without re-deriving the integration each time.

What's the risk with MCP?

Over-privilege. If every tool is visible and one shared key runs them, an agent becomes a huge attack surface. Scope tools per caller and mint identity per call.

How many tools is too many?

Any one agent should see a small, relevant subset, loaded by role. The total surface can be large; the menu a single agent reasons over should not.