Skills
AGENT LAB: SKILLS
skills/zxkane/aws-skills/aws-mcp-setup/Gen Agent Trust Hub

aws-mcp-setup

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The guide instructs the user to use uvx to run mcp-proxy-for-aws@latest. This involves downloading and executing remote code. The source code is hosted under the 'aws' GitHub organization, which is a trusted source, downgrading the severity to LOW.
  • [COMMAND_EXECUTION] (SAFE): The skill contains commands such as cat ~/.claude.json and aws sts get-caller-identity. These are provided as diagnostic steps for the user to perform manually to verify their own local configuration and are not executed automatically in a malicious context.
  • [CREDENTIALS_UNSAFE] (SAFE): While the guide mentions AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY, it uses placeholders rather than providing hardcoded secrets. This is standard practice for documentation.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:09 PM