Security Audit

shorten-rest-automation

github.com/ComposioHQ/awesome-claude-skills

AI SkillCommit 27904475d127

TRUSTED

Scanned about 2 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

shorten-rest-automation received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.

SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Skill enables broad tool execution via Rube MCP.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 20, 2026 (commit 27904475). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

100%

Dependency Graph

100%

LLM Behavioral Safety

85%

Behavioral Risk Signals

Shell Execution

1 finding

Dynamic Code

1 finding

Excessive Permissions

1 finding

Security Findings1

Severity	Finding	Layer	Location
HIGH	Skill enables broad tool execution via Rube MCP The `SKILL.md` instructs the LLM to utilize `RUBE_MULTI_EXECUTE_TOOL` and `RUBE_REMOTE_WORKBENCH` with `run_composio_tool()`. These Rube MCP tools are designed for dynamic execution of other Composio tools. While the documentation recommends discovering tools first via `RUBE_SEARCH_TOOLS`, it does not inherently restrict the scope of operations that can be performed by the executed tools. This broad access, when combined with untrusted user input, could allow a malicious actor to coerce the LLM into executing unintended or harmful operations through the Rube MCP system, potentially leading to data exfiltration, modification, or other unauthorized actions, depending on the underlying Composio tools' capabilities and the Rube MCP's input validation. Implement stricter access controls or allow-lists for `tool_slug` and `run_composio_tool()` arguments within the Rube MCP system. The skill documentation should also emphasize the need for careful validation and sanitization of user input before constructing tool calls, and ideally, provide examples of how to restrict the scope of operations to only necessary functions.	LLM	SKILL.md:90

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/e7ac0d612489b334.svg)](https://skillshield.io/report/e7ac0d612489b334)