moonpay-mcp
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@moonpay/clipackage globally using npm (npm i -g @moonpay/cli). This is a vendor-owned resource used for its intended purpose. - [COMMAND_EXECUTION]: The skill provides several commands for the user to execute, including login and verification (
mp login,mp verify) and configuration of the MCP server (mp mcp). These commands are standard for setting up the MoonPay CLI environment. - [DATA_EXPOSURE_AND_EXFILTRATION]: The documentation mentions the storage of credentials in
~/.config/moonpay/credentials.json. This is the standard local path used by the MoonPay CLI to manage authenticated sessions and is not accessed by the skill in an unsafe manner. - [INDIRECT_PROMPT_INJECTION]: The skill enables tools that interact with external blockchain data and market information (e.g., token search, transaction history). This creates an ingestion surface where third-party data could theoretically contain instructions for the agent, though no specific vulnerabilities are present in the setup instructions themselves.
Audit Metadata