faf-wizard
Warn
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of a global CLI tool using
npm install -g faf-cli, which pulls code from a third-party registry. - [EXTERNAL_DOWNLOADS]: The MCP server configuration utilizes
npx -y claude-faf-mcp@latest. Using the@latesttag is a security risk as it executes unversioned remote code that could be updated to include malicious behavior without user notice. - [COMMAND_EXECUTION]: The skill instructs the agent to run various shell commands such as
faf auto,faf migrate, andfaf sync. These commands perform automated scans of the local file system and project structure. - [DATA_EXFILTRATION]: Under the 'Phase 2: Context Mining' description, the skill states it extracts project descriptions and architecture patterns from code structure and dependencies. This involves reading sensitive project manifests (e.g.,
package.json,Cargo.toml,pyproject.toml) and directory contents.
Audit Metadata