mcp-openapi-typescript-stack
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a documentation-only resource providing architectural patterns for building TypeScript MCP servers. It does not contain any executable code or malicious instructions.
- [SAFE]: Includes comprehensive security guidance for handling authentication, including using AsyncLocalStorage for multi-tenant isolation, enforcing TLS, and avoiding the logging of sensitive headers.
- [SAFE]: Provides proactive security warnings regarding potentially vulnerable or compromised versions of the axios library.
- [SAFE]: All referenced libraries and services, including Ky, @hey-api/openapi-ts, Cloudflare Workers, and the official MCP SDK, are well-known and reputable industry standards.
Audit Metadata