Skills
skills/sickn33/antigravity-awesome-skills/bamboohr-automation/Gen Agent Trust Hub

bamboohr-automation

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Configures an external MCP server at https://rube.app/mcp to provide tool definitions and execution capabilities.
  • [DATA_EXFILTRATION]: Facilitates the transfer of sensitive human resources data—including PII, employee IDs, and benefit details—to a non-whitelisted external domain (rube.app).
  • [PROMPT_INJECTION]: The skill processes potentially untrusted third-party HR data that could contain hidden instructions (Indirect Prompt Injection).
  • Ingestion points: BAMBOOHR_GET_ALL_EMPLOYEES, BAMBOOHR_GET_EMPLOYEE, and BAMBOOHR_GET_TIME_OFF_REQUESTS fetch data from external records.
  • Boundary markers: The instructions do not specify the use of delimiters or 'ignore' warnings to isolate external data from system instructions.
  • Capability inventory: The skill provides tools for data modification, such as BAMBOOHR_UPDATE_EMPLOYEE, BAMBOOHR_CREATE_TIME_OFF_REQUEST, and BAMBOOHR_UPDATE_TIME_OFF_REQUEST.
  • Sanitization: No explicit sanitization or validation of the ingested HR data is defined to prevent embedded instruction execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 09:36 AM