A locally installed tool is auditable. You can read the code, pin the version, and know it won't change under you. A remote tool—a hosted MCP server, a cloud connector—can change behavior at any point after you've approved it;
大多数人认为远程工具比本地安装的工具更安全,因为它们由专业团队维护。但作者指出远程工具实际上可能更危险,因为它们可以在用户批准后随时改变行为,而本地工具则更加可控。这一观点挑战了云原生和远程服务的默认安全假设。