asana-automation

SUSPICIOUS: The skill's capabilities align with Asana automation, but all access is mediated through the third-party Rube/Composio MCP stack rather than direct Asana APIs. That makes the main risk credential/data delegation and intermediary trust, not overt malware or purpose mismatch.