wakatime-automation
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches tool configurations and schemas from the remote Composio Rube MCP server (
https://rube.app/mcp), which is the intended architectural component for this automation skill. - [COMMAND_EXECUTION]: Provides instructions for triggering Wakatime operations using specific toolkit commands such as
RUBE_MULTI_EXECUTE_TOOLandRUBE_REMOTE_WORKBENCH. - [DATA_EXFILTRATION]: Facilitates the management of Wakatime connections and data synchronization through the authorized Composio gateway to enable automated activity tracking.
- [PROMPT_INJECTION]: The skill processes dynamic tool information and plans from the remote search endpoint, creating an indirect prompt injection surface.
- Ingestion points: Tool metadata and execution plans returned by
RUBE_SEARCH_TOOLSfromrube.app. - Boundary markers: Absent; the agent follows returned plans directly as per instructions.
- Capability inventory:
RUBE_MULTI_EXECUTE_TOOL,RUBE_REMOTE_WORKBENCH. - Sanitization: Absent; relies on the integrity of the well-known provider's output.
Audit Metadata