stripe
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): Documentation recommends installing the Stripe CLI via Homebrew and using the official Stripe MCP server (mcp.stripe.com). Both are provided by Stripe, which is a trusted organization under [TRUST-SCOPE-RULE].
- [Privilege Escalation] (SAFE): The 'Bash' tool is included in the allowed tools for executing CLI commands. Potential risk is mitigated by the skill's explicit instructions for mandatory human confirmation before executing any sensitive financial operations.
- [Indirect Prompt Injection] (SAFE): The skill ingests data from external sources via WebFetch and the Stripe API. (Ingestion points: WebFetch, Stripe API; Boundary markers: Absent; Capability inventory: Bash, refund/subscription tools; Sanitization: Absent). The risk of malicious instructions in external data is minimized by the human-in-the-loop requirement for all money-related actions.
Audit Metadata