lexoffice-automation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill requires connecting to an external MCP server (https://rube.app/mcp) to obtain tool logic. This is the primary function of the skill.
- REMOTE_CODE_EXECUTION (LOW): The use of RUBE_REMOTE_WORKBENCH enables remote execution of operations, which is the intended use case for this automation toolkit.
- COMMAND_EXECUTION (LOW): Automates Lexoffice tasks via RUBE_MULTI_EXECUTE_TOOL based on dynamic schemas.
- Indirect Prompt Injection (LOW): Risk exists during tool discovery. 1. Ingestion point: RUBE_SEARCH_TOOLS responses (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Remote tool execution and workbench access (SKILL.md). 4. Sanitization: Absent.
Audit Metadata