owasp-mcp
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- Educational Security Reference: The skill consists of structured documentation regarding common security vulnerabilities. It provides detailed descriptions of risks such as token mismanagement and privilege escalation to assist in security assessments.
- Reference Injection Patterns: Some documents contain illustrative examples of prompt injection techniques, such as 'Ignore previous instructions'. These strings are included for educational context within the vulnerability index and are not formatted as active instructions for the agent to follow.
- Informational Content Only: The skill is composed entirely of Markdown reference files and does not define any tools, scripts, or automated workflows. This lack of executable components ensures that the skill serves purely as a knowledge base without the ability to perform system actions.
- Secure Practice Guidance: The content includes remediation and prevention controls that align with industry-standard security practices, such as the use of secure vaults for secret management and the enforcement of least-privilege principles.
Audit Metadata