10 Interesting MCP Statistics
The Model Context Protocol (MCP) has rapidly become a cornerstone in AI and developer workflows, with tens of thousands of public servers already in use. This article explores key statistics on MCP adoption, usage patterns, and emerging security concerns, highlighting its increasing integration into AI infrastructure.
The Model Context Protocol (MCP) has quickly established itself as a fundamental component in developer tools and enterprise AI workflows since its open-sourcing in late 2024 by Anthropic and subsequent donation to the Agentic AI Foundation. As AI agents and large language model applications increasingly utilize MCP servers, significant trends are emerging in its adoption and application. These trends paint a comprehensive picture of MCP's growing influence within the current and future AI landscape.
MCP adoption has surged, evident in the sheer number of public MCP servers. Directories like MCP.so and Glama.ai list over 21,000 and 23,000 public servers, respectively. When considering internal servers, the total number is likely much higher. Pulse MCP estimates 67 million downloads of local MCP servers in April 2026 alone, with around 18 million weekly views for MCP servers, indicating widespread integration into developer workflows.
Industry reports, such as Zuplo's 2026 State of MCP, reveal strong optimism, with 72% of technical leaders expecting increased MCP usage. Moreover, 58% of MCP builders are developing wrappers around existing APIs. Most MCP users configure 2-7 servers and leverage MCP to sync with data sources, such as documentation and knowledge bases, underscoring its role in complementing context engineering efforts.
Real-world applications demonstrate MCP's impact. Workato saw a 700% jump in Claude for Business usage after integrating read-only MCP servers, leading to a daily average of 1,000 chats. This increased usage has translated into tangible business outcomes, with Workato's CIO reporting $2.7 million in new sales opportunities generated through internal agents powered by MCP.
However, the rapid growth of MCP also brings security challenges. Research by Equixly in 2025 found that 43% of tested MCP servers had command injection vulnerabilities. Additionally, 22% allowed reading files outside intended directories, and 30% permitted unrestricted URL fetching. The State of MCP Server Security 2025 report by Astrix highlighted that 53% of MCPs rely on insecure, long-lived static secrets, such as API keys and personal access tokens, emphasizing a critical need for improved security practices.
Related articles
Build real agentic apps using CUGA: two dozen working examples on a lightweight harness
CUGA, IBM's open-source Agent Harness, simplifies building agentic applications by handling infrastructure, allowing developers to focus on tools and prompts. It offers pre-assembled components for planning, execution, and state management, significantly reducing development time. CUGA has topped agent benchmarks like AppWorld and WebArena.
OpenAI launches new initiative to help find and patch open source bugs
OpenAI has launched "Patch the Planet," a new initiative in partnership with cybersecurity firm Trail of Bits, to enhance the security of open-source projects. This program aims to assist maintainers in identifying and patching bugs, utilizing OpenAI's AI-powered security tools while reducing the burden on project teams.
PP-OCRv6 on Hugging Face: 50-Language OCR from 1.5M to 34.5M Parameters
Baidu has released PP-OCRv6, an advanced optical character recognition (OCR) model supporting 50 languages. Available on Hugging Face, this version significantly improves accuracy and efficiency across various parameter sizes, from 1.5 million to 34.5 million, marking a substantial leap in multilingual OCR technology.