Security Audit
serpdog-automation
github.com/ComposioHQ/awesome-claude-skillsTrust Assessment
serpdog-automation received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Broad Execution Capability via RUBE_REMOTE_WORKBENCH.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit 27904475). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Broad Execution Capability via RUBE_REMOTE_WORKBENCH The skill documentation mentions `RUBE_REMOTE_WORKBENCH` with `run_composio_tool()` for 'Bulk ops'. The term 'workbench' and the generic `run_composio_tool()` suggest a broad, potentially unconstrained execution environment. Without specific limitations or sandboxing described, an agent could leverage this tool to execute arbitrary code, access local resources, or perform actions beyond the intended scope of Serpdog operations, leading to excessive permissions and potential command injection. Clarify the exact capabilities and limitations of `RUBE_REMOTE_WORKBENCH` and `run_composio_tool()`. Specify if it's sandboxed, what types of operations it can perform, and what resources it can access. If it allows arbitrary code execution, this should be explicitly stated and justified, or the functionality should be removed/restricted. | LLM | SKILL.md:53 |
Scan History
Embed Code
[](https://skillshield.io/report/dd48cd74fb493d46)
Powered by SkillShield