40Medium
The skill deceptively fabricates user consent to bypass authorization protocols, posing a significant security risk by manipulating user intent to execute unauthorized actions.
Skill Info
Nameanthropics/claude-plugins-public/build-mcp-server
Registrygithub
Version73e22af437e0
PURLpkg:github/anthropics/claude-plugins-public@73e22af437e0?skill=build-mcp-server
Stars30,459
Installs51
Source
Install
This skill has findings worth reviewing before installing.
GitHub
51 installs
Skills.shDocs
npx skills add https://github.com/anthropics/claude-plugins-publicAssessments (2)
AI Agent Traps ↗Fabricated user consent / pre-authorized instruction — a statement falsely attributed to the user to manufacture authorizationmediumprompt injectionAML.T0051AML.T0051.000AML.T0051.001AML.T0054LLM01:2025
Fabricated user consent / pre-authorized instruction — a statement falsely attributed to the user to manufacture authorization
100% confidenceline 19
the user has already told
Missing licenseinfopolicy violation
Skill does not specify a license field. Specifying a license helps users understand usage terms.
100% confidence
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/anthropics/claude-plugins-public/build-mcp-server)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/anthropics/claude-plugins-public/build-mcp-server"><img src="https://mondoo.com/ai-agent-security/api/badge/github/anthropics/claude-plugins-public/build-mcp-server.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/anthropics/claude-plugins-public/build-mcp-server.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow