korean-law-search
Warn
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the user to install a global Node.js package (
korean-law-mcp) from an external GitHub repository (github.com/chrisryugj). This package is not managed by a verified organization or well-known vendor. - [COMMAND_EXECUTION]: The skill functions by executing shell commands via a custom CLI tool (
korean-law-mcp) which can perform operations on the local host environment. - [DATA_EXFILTRATION]: Legal search queries are transmitted to external third-party endpoints, specifically
korean-law-mcp.fly.devandapi.beopmang.org. While these requests are consistent with the skill's stated purpose, the traffic is sent to infrastructure not operated by established or trusted entities.
Audit Metadata