screenshot-fyi-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill requires calling RUBE_SEARCH_TOOLS and RUBE_GET_TOOL_SCHEMAS against the Rube MCP / Composio endpoints (e.g., https://rube.app/mcp and composio.dev/toolkits/screenshot_fyi) to fetch tool schemas, execution plans, and docs — public third-party content the agent must ingest and interpret at runtime, which could include untrusted or malicious instructions.