The Agent Skills Directory

EXTERNAL_DOWNLOADS (LOW): The skill requires connecting to an external MCP server at 'https://rube.app/mcp'. This domain is not on the trusted sources list, representing an external dependency for the skill's core functionality.
PROMPT_INJECTION (LOW): The skill is vulnerable to indirect prompt injection through the processing of untrusted data from Asana. Ingestion points: Tools like 'ASANA_GET_A_TASK' and 'ASANA_SEARCH_TASKS_IN_WORKSPACE' read user-controlled task names and notes. Boundary markers: The prompt does not provide delimiters or instructions to ignore embedded commands in the fetched data. Capability inventory: The skill can perform sensitive actions such as 'ASANA_CREATE_A_TASK' and arbitrary API calls via 'ASANA_SUBMIT_PARALLEL_REQUESTS'. Sanitization: There is no evidence of sanitization or validation of the data retrieved from Asana before it is processed by the agent.

asana-automation