Malicious MCP Server for E2E Testing

The `malicious-mcp-server` package provides an intentionally misbehaving Model Context Protocol (MCP) server, designed exclusively for end-to-end (E2E) testing of AI agents and client applications. The Model Context Protocol (MCP) is an open standard enabling AI models to securely and reliably interact with external tools, data sources, and services. This package simulates various malicious or error-prone behaviors, such as data exfiltration, tool poisoning, instruction injection, unexpected response formats, network delays, or unauthorized access attempts. Its primary purpose is to allow developers to rigorously test the robustness, error handling, and security mechanisms of their AI systems against real-world attack vectors and unexpected server responses. The current stable version is 1.5.0. It follows a release cadence tied to updates in the MCP specification and the discovery of new potential vulnerabilities or attack patterns in AI agent-tool interactions. Key differentiators include its explicit focus on security testing and its ability to simulate sophisticated, targeted malicious behaviors rather than just generic errors.