flow-nexus-neural
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation instructs the user to download the Flow Nexus CLI tool from the npm registry using npx.
- [REMOTE_CODE_EXECUTION]: The prerequisites involve executing vendor-provided code via 'npx flow-nexus@latest' to register, authenticate, and initiate the MCP server.
- [COMMAND_EXECUTION]: The skill provides explicit bash commands for the user to integrate the Flow Nexus server into their AI environment.
- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it processes external datasets and inputs during training and inference.
- Ingestion points: Data enters the system via the 'dataset' parameter in the 'neural_train_distributed' tool and the 'input' parameter in the 'neural_predict' tool.
- Boundary markers: No specific delimiters or safety instructions are defined in the skill to prevent the AI from following instructions embedded within these inputs.
- Capability inventory: The skill allows for sandbox node deployment, cluster configuration, and distributed code execution through the MCP server.
- Sanitization: No data validation or sanitization logic is evident in the skill documentation to filter potentially malicious content in datasets.
Audit Metadata