Skills
skills/aaaaqwq/claude-code-skills/render-automation/Gen Agent Trust Hub

render-automation

Warn

Audited by Gen Agent Trust Hub on Feb 20, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • EXTERNAL_DOWNLOADS (MEDIUM): The skill directs users to add a third-party MCP server URL (https://rube.app/mcp). This domain is not part of the established trusted source list, requiring users to trust the bridge provider with their Render interaction data.
  • PROMPT_INJECTION (LOW): The skill is vulnerable to Indirect Prompt Injection.
  • Ingestion points: Untrusted data enters the agent context via RENDER_LIST_SERVICES, RENDER_RETRIEVE_DEPLOY, and RENDER_LIST_PROJECTS which fetch service names and metadata from Render.
  • Boundary markers: The skill lacks explicit instructions or delimiters to ignore instructions embedded within the fetched service data.
  • Capability inventory: The agent can trigger state-changing actions via RENDER_TRIGGER_DEPLOY.
  • Sanitization: No sanitization or validation of the external content is mentioned before it is processed by the agent.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 20, 2026, 03:09 PM