diff --git a/content/docs/security/safe-mcp-advisory.mdx b/content/docs/security/safe-mcp-advisory.mdx
index 8d65674..b05d786 100644
--- a/content/docs/security/safe-mcp-advisory.mdx
+++ b/content/docs/security/safe-mcp-advisory.mdx
@@ -209,7 +209,7 @@ The mitigations in this advisory align with the following OWASP publications:
 
 **MCP04:2025 — Software Supply Chain Attacks & Dependency Tampering**
 *OWASP MCP Top 10, 2025 edition*
-<https://github.com/OWASP/www-project-mcp-top-10>
+[*OWASP MCP Top 10, 2025 edition*](https://github.com/OWASP/www-project-mcp-top-10)
 
 Relevant controls that informed G-01 and G-02 mitigations:
 
@@ -228,7 +228,7 @@ Relevant controls that informed G-01 and G-02 mitigations:
 
 **MCP09:2025 — Shadow MCP Servers**
 *OWASP MCP Top 10, 2025 edition*
-<https://github.com/OWASP/www-project-mcp-top-10>
+[*OWASP MCP Top 10, 2025 edition*](https://github.com/OWASP/www-project-mcp-top-10)
 
 Relevant controls that informed the G-03 plugin allowlist mitigation:
 
@@ -241,7 +241,7 @@ Relevant controls that informed the G-03 plugin allowlist mitigation:
 
 **MCPS — Cryptographic Security Layer for MCP**
 *OWASP MCP Top 10 Recommended Controls*
-<https://github.com/OWASP/www-project-mcp-top-10/tree/master/2025/recommended-controls>
+[*OWASP MCP Top 10 Recommended Controls*](https://github.com/OWASP/www-project-mcp-top-10/tree/master/2025/recommended-controls)
 
 The MCPS specification defines the Tool Definition Signing approach referenced in
 the G-02 long-term mitigation: