moai-context7-integration
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Communicates with api.context7.com to retrieve library documentation and metadata. This is the primary function of the skill and utilizes a dedicated service endpoint.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it retrieves data from an external API to update local files. Ingestion points: Context7 API documentation endpoint (SKILL.md). Boundary markers: None identified in provided code snippets. Capability inventory: Local file modification via write_text in CodeExampleManager (SKILL.md). Sanitization: Uses regex patterns for structural updates. This behavior is documented as a core feature for keeping documentation current.
Audit Metadata