todoist-automation

SUSPICIOUS: The skill’s capabilities are mostly aligned with Todoist automation, and it does not include malware-like payloads, credential-file theft, or download-execute behavior. The main risk is trust and data-flow centralization through a third-party MCP intermediary (Rube/Composio), plus a documentation inconsistency around whether API keys are required and only partial verification of the exact rube.app MCP endpoint. This is better classified as a moderate-trust integration risk than confirmed malicious behavior.