MCP 2026 introduced several new attack surfaces that existing scanners do not cover. v1.1.0 of Bawbel Scanner addresses all of them. What is Bawbel Scanner? An open-source CLI that scans agentic AI components (MCP server manifests, SKILL.md files, system prompts, and agent plugins) for security vulnerabilities. Every finding maps to a published AVE (Agentic Vulnerability Enumeration) record with a CVSS-AI score, behavioral fingerprint, and remediation steps. What is new in v1.1.0 Toxic flow detection Individual findings are important. But two findings that form a complete attack chain are more dangerous than their individual scores suggest. Toxic flow detection maps each finding to a capability tag after the scan completes. It then checks all capability pairs against 12 built-in attack chain definitions. When a pair matches, a ToxicFlow is reported with a combined risk score.…