n8n-mcp-tools-expert
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains only instructional text and reference material for interacting with the n8n-mcp server tools. It does not perform any operations itself.
- [DATA_EXFILTRATION]: The file mentions the requirement for
N8N_API_URLandN8N_API_KEYto use certain workflow management tools. This is standard configuration for authentication with the n8n service and there is no evidence of these credentials being hardcoded or sent to unauthorized external destinations. - [REMOTE_CODE_EXECUTION]: References to JavaScript and Python Code nodes within n8n are documented. The skill provides guidance on using these standard n8n features but does not include or fetch malicious scripts. Execution of code in these nodes is managed by the host n8n environment.
- [PROMPT_INJECTION]: The skill processes workflow templates and node documentation from external sources. While this represents a surface for indirect prompt injection, the skill is purely informational and documents 'Auto-sanitization' mechanisms within the target toolset to maintain structural integrity.
Audit Metadata