miro-automation
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the configuration of an external MCP server at
https://rube.app/mcpto function. This third-party service provides the interface for interacting with the Miro API. - [PROMPT_INJECTION]: A surface for indirect prompt injection exists where malicious instructions could be embedded in Miro board content. 1. Ingestion points: Board titles and sticky note content retrieved from
MIRO_GET_BOARDS2andMIRO_GET_BOARD_ITEMS. 2. Boundary markers: No delimiters or instructions are provided to the agent to ignore potentially malicious content within retrieved Miro data. 3. Capability inventory: The skill provides the ability to modify board content and share boards with external email addresses viaMIRO_SHARE_BOARD. 4. Sanitization: No content validation or sanitization is performed on the data fetched from Miro before it is processed by the agent.
Audit Metadata