linkedin-automation
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [Data Exposure & Exfiltration] (LOW): The skill references external domains (rube.app and composio.dev) for tool integration and LinkedIn connectivity. These network operations are consistent with the skill's primary purpose of social media automation.
- [Indirect Prompt Injection] (LOW): The skill establishes an attack surface by processing data from external LinkedIn APIs and tool schemas. Evidence Chain: 1. Ingestion points: LINKEDIN_GET_MY_INFO, RUBE_SEARCH_TOOLS (SKILL.md); 2. Boundary markers: Absent; 3. Capability inventory: LINKEDIN_CREATE_LINKED_IN_POST, LINKEDIN_DELETE_LINKED_IN_POST (SKILL.md); 4. Sanitization: Absent.
Audit Metadata