exa-web-search-free
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill configures a connection to Exa AI's official Model Context Protocol (MCP) endpoint at
mcp.exa.aito retrieve search tool definitions and capabilities. - [COMMAND_EXECUTION]: Utilizes the
mcportercommand-line interface to register MCP servers and invoke search functions such asweb_search_exaandget_code_context_exa. - [PROMPT_INJECTION]: Potential for indirect prompt injection as the skill retrieves and processes untrusted content from the public web, GitHub, and StackOverflow; the skill serves as a data ingestion point for the agent.
Audit Metadata