leadoku-automation

SUSPICIOUS: The skill's broad purpose matches Leadoku automation, and the infrastructure is same-org Composio/Rube rather than an obviously rogue source. However, it routes authentication, schemas, and actions through Composio's intermediary MCP instead of direct Leadoku APIs, making credential forwarding and third-party data flow the main concerns. Not confirmed malware, but medium risk due to intermediary control and automation capability.