mcp-builder
Warn
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [Dynamic Execution] (MEDIUM): The
MCPConnectionStdioclass inscripts/connections.pyuses thestdio_clientto execute system commands provided via thecommandandargsparameters. This allows the skill to spawn arbitrary processes on the host system. - [Data Exposure & Exfiltration] (LOW): The
MCPConnectionSSEandMCPConnectionHTTPclasses inscripts/connections.pyfacilitate network communication with external URLs. This capability enables the agent to connect to remote servers, which could be used for data transmission to non-whitelisted domains if the URL is provided by a user or external source.
Audit Metadata