The Agent Skills Directory

[Indirect Prompt Injection] (LOW): This skill has an indirect prompt injection surface by design. Ingestion points: Data enters the agent's context through responses from the RUBE_SEARCH_TOOLS and RUBE_MANAGE_CONNECTIONS tools, which retrieve data from the external rube.app MCP server. Boundary markers: The instructions do not provide boundary markers or explicit warnings to ignore potential instructions embedded in the tool discovery results. Capability inventory: The skill gives the agent the ability to execute any tool found during discovery using the RUBE_MULTI_EXECUTE_TOOL capability. Sanitization: No validation or sanitization is performed on the tool schemas or arguments returned by the search tools.
[External Downloads] (LOW): The skill requires a connection to a third-party MCP server at https://rube.app/mcp. As this is the primary purpose of the skill, the severity is downgraded per the [TRUST-SCOPE-RULE], though it remains an external dependency from a non-whitelisted source.

scrapegraph-ai-automation