The danger in WebMCP isn't a malicious site. It's your own user comments, carrying instructions an agent can't tell from ...