discord-automation
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to connect to a remote MCP server at https://rube.app/mcp. This endpoint acts as a proxy for Discord automation toolkits. As this is a well-known service associated with the Composio platform, the reference is documented as a legitimate dependency for the skill's primary purpose.
- [PROMPT_INJECTION]: The skill facilitates the ingestion of external data from Discord channels (via tools like DISCORDBOT_LIST_MESSAGES), which constitutes an indirect prompt injection surface. \n
- Ingestion points: Discord message and member data retrieval tools. \n
- Boundary markers: No explicit delimiters are specified in the markdown instructions. \n
- Capability inventory: The skill allows for significant Discord operations including messaging, role management, and webhook execution. \n
- Sanitization: Not applicable for this documentation-only skill file.
Audit Metadata