Skills
skills/composiohq/awesome-claude-skills/apiverve-automation/Gen Agent Trust Hub

apiverve-automation

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • External Downloads (LOW): The skill requires the user to add an external MCP server at https://rube.app/mcp. This domain is not included in the Trusted External Sources list.
  • Indirect Prompt Injection (LOW): The skill processes untrusted data from the MCP search tool to determine its execution path. Evidence Chain: 1. Ingestion points: RUBE_SEARCH_TOOLS output (plans, pitfalls, schemas). 2. Boundary markers: Absent. 3. Capability inventory: RUBE_MULTI_EXECUTE_TOOL, RUBE_REMOTE_WORKBENCH. 4. Sanitization: Absent.
  • Remote Code Execution (LOW): The workflow utilizes RUBE_MULTI_EXECUTE_TOOL and RUBE_REMOTE_WORKBENCH to execute logic provided by the remote MCP provider.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:32 PM