[maple3142]

I think the reason is that MCP also works over a pipe (stdio), which does not need authentication.

[nightpool]

It doesn't need it if this vulnerability is the only one you're worried about (remote websites), but it'd be nice to have it before letting it use e.g. your Github account. This is how VS Code extensions work, for example, and it's pretty nice