mcp-builder
Warn
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- COMMAND_EXECUTION (MEDIUM): The
MCPConnectionStdioclass inscripts/connections.pyenables the execution of local system commands using thestdio_clienttransport. This is a core feature of the Model Context Protocol (MCP); however, it creates a risk where an attacker could use prompt injection to trick the agent into running unauthorized or harmful commands on the host machine. The severity is reduced to MEDIUM as this is the primary intended function of the script. - EXTERNAL_DOWNLOADS (LOW): The
MCPConnectionSSEandMCPConnectionHTTPclasses inscripts/connections.pyallow the agent to establish outbound network connections to arbitrary URLs for data streaming. Without a strict whitelist of allowed domains, this capability could be used for unauthorized data transmission or interacting with malicious external endpoints.
Audit Metadata