sales-grain
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFE
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill provides configuration instructions for a remote MCP server using npx -y mcp-remote. This connects to api.grain.com, the official API endpoint for the service being documented.- [COMMAND_EXECUTION]: Documentation includes a setup command for a related skill using npx skills add, which targets the vendor's own repository.- [DATA_EXFILTRATION]: Mentions the use of an API token (GRAIN_API_TOKEN) for authentication with the platform's API; no logic to expose or exfiltrate this credential was found.- [SAFE]: Analysis of the instructions and references found no evidence of prompt injection, malicious obfuscation, or unauthorized privilege escalation.
Audit Metadata