linkedin-automation
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to configure an external MCP server at 'https://rube.app/mcp'. This domain is the primary service provider for the 'Rube MCP' tools required for the LinkedIn automation workflows described.
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface (Category 8).
- Ingestion points: External LinkedIn profile data and organization information retrieved via 'LINKEDIN_GET_MY_INFO' and 'LINKEDIN_GET_COMPANY_INFO'.
- Boundary markers: None identified in the provided instructions to delimit external data from agent instructions.
- Capability inventory: The skill possesses capabilities to create posts ('LINKEDIN_CREATE_LINKED_IN_POST'), post comments ('LINKEDIN_CREATE_COMMENT_ON_POST'), and delete content ('LINKEDIN_DELETE_LINKED_IN_POST').
- Sanitization: The instructions do not specify any validation or sanitization procedures for the data retrieved from external LinkedIn sources before it is processed by the agent.
Audit Metadata