cn-ecommerce-search
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The setup instructions use "npx -y @shopme/cn-ecommerce-search-mcp" to install the required MCP server. This package is not from a trusted organization and has not been verified.
- REMOTE_CODE_EXECUTION (MEDIUM): The npx command downloads and runs code on the local system. If the untrusted package "@shopme/cn-ecommerce-search-mcp" were compromised or malicious, it would gain execution privileges on the user's machine.
- PROMPT_INJECTION (LOW): The "get_product_from_url" tool retrieves data from external e-commerce sites. Evidence: 1. Ingestion point is the "url" parameter in SKILL.md. 2. Boundary markers are absent. 3. Capability inventory includes network requests to external APIs. 4. Sanitization is not mentioned. This creates a surface for indirect prompt injection where an attacker could place instructions in product descriptions to manipulate the agent.
Audit Metadata