Skills
skills/jonmumm/skills/mcp-setup/Gen Agent Trust Hub

mcp-setup

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the download of MCP server implementations from the NPM registry.
  • [REMOTE_CODE_EXECUTION]: The skill utilizes npx to execute code for various MCP servers. All identified packages originate from well-known services (Sentry, PostHog, Neon) or trusted organizations (Anthropic, Model Context Protocol).
  • [COMMAND_EXECUTION]: The skill provides instructions for using the claude CLI to add, list, and manage MCP server configurations.
  • [DATA_EXFILTRATION]: Instructions mention the use of environment variables for API keys and reference local configuration files (~/.claude/settings.json) as part of the intended setup process. It includes explicit guidance on avoiding the storage of sensitive tokens in version-controlled files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 05:57 PM