recruitee-automation

SUSPICIOUS. The skill's purpose and capabilities are broadly aligned for Recruitee automation, and the MCP endpoint appears to be an official same-org Composio/Rube service rather than a random host. However, all automation and authentication are mediated through a third-party MCP gateway (rube.app/Composio) instead of direct Recruitee API usage, so recruiter data and action authority flow through an intermediary. This is not confirmed malware, but it creates meaningful trust, privacy, and autonomous-action risk beyond a simple documentation skill.