Skills
skills/gate/gate-skills/gate-mcp-codex-installer/Gen Agent Trust Hub

gate-mcp-codex-installer

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Downloads the gate-skills repository from the vendor's official GitHub account (https://github.com/gate/gate-skills.git).
  • [EXTERNAL_DOWNLOADS]: References official vendor endpoints at https://api.gatemcp.ai for MCP server communication.
  • [REMOTE_CODE_EXECUTION]: Executes the gate-mcp package directly from the npm registry using 'npx -y'.
  • [COMMAND_EXECUTION]: Modifies the user's local configuration file at ~/.codex/config.toml to add MCP server definitions.
  • [COMMAND_EXECUTION]: Uses standard shell utilities (mkdir, touch, git, cp) to set up the local environment and install skills into the ~/.codex/skills/ directory.
  • [COMMAND_EXECUTION]: Attempts to install the 'npx' utility globally using 'npm install -g npx' if it is not detected on the host system.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 05:27 AM