pipedrive-automation

SUSPICIOUS: the skill's CRM capabilities match its stated purpose, and the install path appears official to Composio/Rube, but the actual data flow is mediated through a third-party MCP/gateway rather than direct Pipedrive APIs. That makes credential handling and CRM data exposure broader than the description implies, raising medium-high security risk without clear evidence of malware.