mcp-builder
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- EXTERNAL_DOWNLOADS (HIGH): The URLite scanner identified a malicious URL signature (Phishing) associated with the string 'request.params.name'. This finding indicates that the skill likely constructs network requests or performs redirections using dynamic user input, which can be exploited to lead users to phishing sites or download malicious content.
- DATA_EXFILTRATION (MEDIUM): The presence of a phishing alert on a request parameter implies a risk that sensitive user data could be exfiltrated to attacker-controlled domains through crafted URLs.
Recommendations
- AI detected serious security threats
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata