Skills
skills/smithery-ai/cli/smithery-ai-cli/Gen Agent Trust Hub

smithery-ai-cli

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill guides the user to install the @smithery/cli package globally via npm. This is the official tool provided by the vendor (smithery-ai) for accessing their platform.
  • [COMMAND_EXECUTION]: The skill relies on executing the smithery binary to perform administrative tasks such as namespace management, authentication, and tool discovery. These commands are part of the intended use case for a CLI-based skill.
  • [REMOTE_CODE_EXECUTION]: The skill facilitates connecting to and calling tools from remote MCP servers (e.g., https://github.run.tools). While this involves executing logic from remote sources, it is the fundamental purpose of the Smithery marketplace and the Model Context Protocol.
  • [DATA_EXFILTRATION]: The skill manages authentication tokens and session lifecycle via smithery auth commands. These operations communicate with the vendor's official domain (smithery.ai) to secure access to the platform's resources.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 05:04 AM