agent-ready-mcp

Pass

Audited by Gen Agent Trust Hub on Jun 21, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides configuration and usage instructions for the agent-ready-mcp server. All referenced external resources, including the NPM package agent-ready-mcp and the agent-ready.dev domain, are vendor-owned resources associated with the author 'mlava'.
  • [SAFE]: The skill implements best practices for secret management by instructing the agent to never echo real API keys and to use placeholders when generating configuration files.
  • [PROMPT_INJECTION]: The skill identifies the potential for indirect prompt injection from data returned by the scan_site tool. It provides explicit instructions to treat all tool output as inert data to be summarized, mitigating the risk of following malicious instructions embedded in scanned web content.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 21, 2026, 10:26 PM
Security Audit — agent-trust-hub — agent-ready-mcp