gitlab-automation

SUSPICIOUS. The skill’s GitLab automation purpose broadly matches its capabilities, and the MCP endpoint appears to be official Composio/Rube infrastructure rather than an unrelated payload. However, the skill routes authentication and GitLab operations through a third-party intermediary, understates setup trust requirements ('no API keys needed'), and enables impactful write/admin actions. This is not confirmed malware, but it carries meaningful security and governance risk due to intermediary data flow and remote-service trust.