mcp-security-sandboxing
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides high-quality defensive guidance and secure coding examples for MCP server developers.
- [SAFE]: Code snippets correctly demonstrate techniques to prevent SQL injection, shell injection, and path traversal vulnerabilities using argument arrays and path resolution.
- [SAFE]: The skill includes robust recommendations for mitigating prompt injection and data exfiltration, such as the use of delimiters, egress controls, and output redaction for common API key formats.
- [SAFE]: Sandboxing recommendations, including the use of microVMs (Firecracker), Docker with restricted capabilities, and Linux namespaces (bubblewrap), align with industry best practices for isolating untrusted code execution.
Audit Metadata