capacitor-mcp
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill documentation instructs users to execute 'npx -y awesome-ionic-mcp@latest'. This downloads and runs code from an unverified package on the npm registry, introducing a potential supply chain risk as the author ('Tommertom') is not in the trusted organization list.
- [COMMAND_EXECUTION] (LOW): The skill exposes various tools that execute shell commands (e.g., 'ionic_build', 'capacitor_sync', 'capacitor_run'). While these are functional for development, they provide a large attack surface for potential command injection if misused. Severity is lowered as this is the primary purpose of the skill.
- [CREDENTIALS_UNSAFE] (LOW): The skill guides users to configure a 'GITHUB_TOKEN'. Although a placeholder is provided, inputting secrets into a third-party MCP configuration could lead to credential exfiltration if the package is compromised.
Audit Metadata