mcp-security-sandboxing

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides high-quality defensive guidance and secure coding examples for MCP server developers.
  • [SAFE]: Code snippets correctly demonstrate techniques to prevent SQL injection, shell injection, and path traversal vulnerabilities using argument arrays and path resolution.
  • [SAFE]: The skill includes robust recommendations for mitigating prompt injection and data exfiltration, such as the use of delimiters, egress controls, and output redaction for common API key formats.
  • [SAFE]: Sandboxing recommendations, including the use of microVMs (Firecracker), Docker with restricted capabilities, and Linux namespaces (bubblewrap), align with industry best practices for isolating untrusted code execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 10:27 AM
Security Audit — agent-trust-hub — mcp-security-sandboxing