Thanks rubben, i liked the content, wondering how did you manage making sure an agent has access to list of mcps only. Considering highly regulated environment you may want to avoid situation where your agent goes rogue and invokes tools which it should not, ofcourse it may not have identity tokens to perform certain actions. Also i dont see you speaking about Dynamic Client Registration mandate from MCP as it states clients should be able to auto register themselves. You have any thoughts there?