mcp-builder
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- Category 10: Dynamic Execution (SAFE): No executable scripts or code generation patterns were found. The skill consists entirely of markdown documentation.
- Category 4: Unverifiable Dependencies & Remote Code Execution (SAFE): No external package managers or remote script downloads are referenced or executed.
- Category 2: Data Exposure & Exfiltration (SAFE): No sensitive file paths, hardcoded credentials, or unauthorized network operations were detected.
- Category 3: Obfuscation (SAFE): No evidence of Base64, zero-width characters, or other encoding techniques intended to hide malicious content was found.
- Category 8: Indirect Prompt Injection (SAFE): While the skill defines patterns for tool design, it does not ingest or process untrusted external data that could lead to indirect injection.
Audit Metadata