Skills
skills/composiohq/awesome-claude-skills/diffbot-automation/Gen Agent Trust Hub

diffbot-automation

Warn

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • EXTERNAL_DOWNLOADS (MEDIUM): The skill requires the addition of a remote MCP server at https://rube.app/mcp. This source is not within the trusted repository list.
  • REMOTE_CODE_EXECUTION (MEDIUM): Tools are dynamically discovered via RUBE_SEARCH_TOOLS and executed via RUBE_MULTI_EXECUTE_TOOL. This allows the remote server to dictate logic for the agent's actions at runtime.
  • PROMPT_INJECTION (MEDIUM): The skill has a significant indirect prompt injection surface because it processes data extracted from external websites via Diffbot. No boundary markers or sanitization steps are defined to prevent embedded instructions in extracted content from influencing subsequent tool calls.
  • COMMAND_EXECUTION (LOW): The skill standardizes the use of Rube MCP tools for system-level operations.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 16, 2026, 12:49 PM