gate-mcp-installer
Warn
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill is centered around the execution of a shell script (
scripts/install-gate-mcp.sh) that modifies the system state by installing a global npm package and adding configurations to the mcporter CLI. - [EXTERNAL_DOWNLOADS]: The installation process downloads the
mcporterpackage from the public npm registry and communicates with the remote endpointhttps://api.gatemcp.ai/mcpto verify connectivity and retrieve tool schemas. - [INDIRECT_PROMPT_INJECTION]: The skill processes and displays the output from the
mcporter listcommand, which contains data fetched from a remote server. This represents a potential injection surface if the remote server returns adversarial content designed to influence the agent's logic. - Ingestion points: Terminal output of
mcporter list gate --schemacaptured inscripts/install-gate-mcp.sh. - Boundary markers: Absent; the script pipes output directly to text processing tools (
grep,head). - Capability inventory: Execution of
bash,npm, and themcporterCLI tool. - Sanitization: Absent; the script performs basic string matching on the CLI output.
- [METADATA_POISONING]: There is a discrepancy in the troubleshooting documentation. While the code connects to
api.gatemcp.ai, the troubleshooting table inSKILL.mddirects the user to check connectivity tofulltrust.link. This inconsistent metadata could mislead troubleshooting efforts or indicate a residual reference from a different source.
Audit Metadata