active-campaign-automation
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access attempts were detected. The skill provides legitimate instructions for API automation via a known service provider domain.
- [EXTERNAL_DOWNLOADS]: The skill requires connecting to an external Model Context Protocol (MCP) server at
https://rube.app/mcp. This connection is the primary mechanism for the skill's functionality and is documented as a prerequisite for setup. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it retrieves and processes data from ActiveCampaign which could contain malicious instructions.
- Ingestion points: Data retrieved from ActiveCampaign API via the toolkit.
- Boundary markers: None identified in the provided instructions.
- Capability inventory: Ability to execute multiple tools via
RUBE_MULTI_EXECUTE_TOOLand manage remote environments viaRUBE_REMOTE_WORKBENCH. - Sanitization: No explicit sanitization or validation steps for external data are included in the skill body.
Audit Metadata