ai-dev-jobs-mcp
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill configuration and instructions do not contain malicious code, obfuscation, or attempts to exfiltrate sensitive user data.
- [EXTERNAL_DOWNLOADS]: The skill connects to a remote MCP server at aidevboard.com to access job index data, which is the intended source for the job search functionality.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it retrieves and processes untrusted data from external job listings. * Ingestion points: Job descriptions and requirements are fetched from an external site via the
get_jobandsearch_jobstools. * Boundary markers: The instructions do not define clear delimiters for external job content. * Capability inventory: The skill tools are read-only and lack capabilities for system modification or command execution. * Sanitization: There is no specified logic for sanitizing or filtering instructions that might be embedded in job listing data.
Audit Metadata