n8n's MCP Server Trigger ships with a bearer token and per-workflow opt-in. Six months later you have ten endpoints, one token, and no idea who calls what.
