> Two replies to this comment have failed to address my question. I must be missing something obvious.

Since one of these replies is mine, let me clarify.

From the documentation:

  When using developer mode, watch for prompt injections and 
  other risks, model mistakes on write actions that could 
  destroy data, and malicious MCPs that attempt to steal 
  information.

The second warning is equivalent to promoting untested code into production.

The last warning is equivalent to exposing SSH to the Internet, configured such that your account does not require a password to successfully establish a connection, and then hoping no one can guess your user name.

0 - https://owasp.org/www-community/attacks/SQL_Injection