excalidraw-diagrams
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): Recommends the installation of an external MCP server from an unverified Vercel domain (https://excalidraw-mcp-app.vercel.app/mcp). While linked to a GitHub repository, the hosting is third-party and not on the trusted sources list.
- [COMMAND_EXECUTION] (LOW): Uses dynamic Python script generation via bash heredocs to create .excalidraw files. This involves local file-system writes and hardcoded local user paths (/Users/samm/...).
- [DATA_EXFILTRATION] (SAFE): Explicitly warns the user about privacy implications before uploading diagrams to excalidraw.com, mitigating accidental data exposure.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes untrusted user input to generate diagrams without explicit sanitization or boundary markers. Ingestion points: User diagram requests in SKILL.md. Capability inventory: File-write (write_scene) and Python execution (bash). Sanitization: Absent. Boundary markers: Absent.
Audit Metadata