placekey-automation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill configures an external MCP server at 'https://rube.app/mcp'. Although this is core to its functionality, the domain is not verified in the trusted source list.
- [PROMPT_INJECTION] (LOW): Potential for Indirect Prompt Injection (Category 8) exists. 1. Ingestion points: Tool schemas from RUBE_SEARCH_TOOLS. 2. Boundary markers: None. 3. Capability inventory: Execution via RUBE_MULTI_EXECUTE_TOOL. 4. Sanitization: None detected.
- [COMMAND_EXECUTION] (SAFE): Tool usage is restricted to the Rube MCP framework and does not involve direct shell access or dangerous primitives.
Audit Metadata