create-mcp-app
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches reference code, API documentation, and framework templates from the official Model Context Protocol GitHub repository to guide the user in building apps.
- [COMMAND_EXECUTION]: Instructs the agent to execute shell commands for cloning repositories and installing standard Node.js development packages such as express, vite, and zod.
- [COMMAND_EXECUTION]: Uses subshell command substitution to dynamically resolve the latest package version via npm view during the repository cloning process.
Audit Metadata