stitch-mcp-get-project
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: No security issues detected. The skill defines a protocol for the agent to retrieve project information from the Google Stitch platform.
- [PROMPT_INJECTION]: The skill includes constraints to ensure it is only used in the correct context, which are standard operational guidelines and do not attempt to bypass safety filters.
- [EXTERNAL_DOWNLOADS]: The skill references a well-known service domain (stitch.withgoogle.com) for resource identification. No external code is downloaded or executed.
- [NO_CODE]: This skill consists of documentation and configuration files without any executable code scripts, reducing the direct attack surface.
Audit Metadata