Skills
skills/composiohq/awesome-claude-skills/modelry-automation/Gen Agent Trust Hub

modelry-automation

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • EXTERNAL_DOWNLOADS (LOW): The skill requires the configuration of an external MCP server endpoint (https://rube.app/mcp). This is a remote dependency that controls the toolset available to the agent.
  • PROMPT_INJECTION (LOW): The skill is vulnerable to Indirect Prompt Injection (Category 8) by instructing the agent to fetch and adhere to "execution plans" provided by a remote source.
  • Ingestion points: Data returned from the RUBE_SEARCH_TOOLS call, specifically tool schemas and execution plans.
  • Boundary markers: Absent. The instructions do not provide delimiters or warnings to ignore instructions within the tool search results.
  • Capability inventory: The skill utilizes RUBE_MULTI_EXECUTE_TOOL and RUBE_REMOTE_WORKBENCH which allow for complex tool execution based on remote data.
  • Sanitization: Absent. The agent is explicitly told to follow the schemas and plans returned by the server without validation.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:43 PM