Guru MCP

If used carelessly or invoked on the wrong card, the agent could alter company documentation that other users rely on.

The skill exposes mutation of existing Guru cards, which can affect shared business knowledge. The artifacts do not instruct the agent to obtain explicit confirmation, show a diff, or provide rollback guidance before updating.

The agent can access Guru data available to the token owner and may be able to create or update content if that account has permission.

The skill requires a Guru API token tied to the user's account. This is expected for the integration, but users should understand the token grants account-level access according to Guru permissions.

Questions and knowledge-base interactions may leave the local environment and be processed by Guru.

The skill routes MCP calls to Guru's hosted MCP endpoint using the configured authorization header. This is purpose-aligned, but it means prompts, searches, and retrieved content are handled by the Guru service.

Sensitive questions or internal topics may become visible in Guru analytics to authorized administrators.

The artifact discloses that questions are logged in Guru analytics. This is expected behavior, but users should know their queries may be retained or visible in that administrative context.