Claude Agent Sdk

The skill is generally well-documented and emphasizes security best practices, but the `templates/custom-mcp-server.ts` file contains a `calculate` tool that uses `eval(args.expression)`. This presents a direct code injection vulnerability, as a malicious prompt could instruct the AI agent to inject arbitrary JavaScript into the `expression` argument, leading to arbitrary code execution within the agent's environment. While a comment suggests using a proper math parser in production, the example itself demonstrates a risky capability without clear mitigation, classifying it as suspicious.