meigen-ai-design-mcp
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs its core functionality via the meigen package on NPM and references a curated prompt library hosted on GitHub.
- [COMMAND_EXECUTION]: Utilizes shell commands for setup, plugin management, and executing asset generation through a dedicated CLI tool.
- [DATA_EXFILTRATION]: Local image files are uploaded to the vendor's cloud infrastructure (MeiGen Cloud) when used as visual references for generation, a behavior that is clearly documented as a core feature.
- [SAFE]: Authentication tokens and API keys are handled using standard security practices like environment variables and configuration files rather than hardcoded secrets.
Audit Metadata