mongodb
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Privilege Escalation (MEDIUM): The skill instructions include administrative actions such as 'apt install', 'systemctl', and creating a root-level user. These operations are necessary for database management but require high-level permissions on the target system.
- Data Exposure & Exfiltration (MEDIUM): The user creation example contains a hardcoded password 'secret'. While this is a common placeholder in documentation, it represents a security risk if the agent executes the command without prompting for a secure credential.
- Unverifiable Dependencies & Remote Code Execution (LOW): The setup guide involves installing 'mongodb-org' via a package manager. This involves downloading software from external sources at runtime, though it is standard for installation tasks.
Audit Metadata