sdwan-ops
Warn
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's operational logic is retrieved from a third-party GitHub repository (github.com/siddhartha2303/cisco-sdwan-mcp) which is not a trusted or verified organization.
- [COMMAND_EXECUTION]: The skill executes a Python script ($SDWAN_MCP_SCRIPT) derived from the unverified external repository via the command line.
- [EXTERNAL_DOWNLOADS]: The documentation states that SSL certificate warnings are suppressed by the MCP server, creating a vulnerability to Man-in-the-Middle (MitM) attacks when handling sensitive vManage credentials.
- [SAFE]: The tools provided are restricted to read-only operations, mitigating the risk of unauthorized configuration changes to the SD-WAN fabric.
Audit Metadata