discord-automation
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to configure an external MCP server endpoint at https://rube.app/mcp to enable the Discord automation features.\n- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection as it ingests untrusted data from an external platform.\n
- Ingestion points: The skill reads message history and reaction data via DISCORDBOT_LIST_MESSAGES and DISCORDBOT_LIST_MESSAGE_REACTIONS_BY_EMOJI as described in SKILL.md.\n
- Boundary markers: No delimiters or instructions to ignore instructions within the retrieved data are provided to the agent.\n
- Capability inventory: The skill possesses high-impact capabilities including sending messages (DISCORDBOT_CREATE_MESSAGE), managing guild roles (DISCORDBOT_ADD_GUILD_MEMBER_ROLE), and executing webhooks (DISCORDBOT_EXECUTE_WEBHOOK).\n
- Sanitization: There is no documentation or evidence of sanitization or validation of the content retrieved from Discord before it is processed by the agent.
Audit Metadata