convert-web-app
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the cloning of the official Model Context Protocol SDK repository (
github.com/modelcontextprotocol/ext-apps) into a temporary directory. This is used strictly as a reference for code examples and API documentation. - [COMMAND_EXECUTION]: Instructs the use of standard package managers (
npm install) to add verified SDK dependencies (@modelcontextprotocol/ext-apps,@modelcontextprotocol/sdk). It also describes running local build scripts and the server usingtsx, which is consistent with the skill's purpose of developing and testing a new application interface. - [DATA_EXFILTRATION]: The server-side code examples include reading a local file (
dist/mcp-app.html) to serve it as a resource. This is a standard operation for an MCP server and does not involve accessing sensitive system files or credentials.
Audit Metadata