mcp-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references official MCP documentation and SDKs from trusted sources such as modelcontextprotocol.io and the modelcontextprotocol GitHub organization.
- [CREDENTIALS_UNSAFE] (SAFE): Authentication patterns demonstrate the correct use of environment variables and placeholders for API keys, avoiding hardcoded credentials.
- [DATA_EXFILTRATION] (SAFE): Local state management patterns use SQLite in a dedicated user-space directory for legitimate application functionality, with no evidence of unauthorized data exfiltration.
- [COMMAND_EXECUTION] (SAFE): While the skill metadata lists Bash as an allowed tool, the provided code templates do not perform any unsafe command execution or shell injection.
Audit Metadata