Security Audit
discord-automation
github.com/sickn33/antigravity-awesome-skillsTrust Assessment
discord-automation received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 0 medium, and 0 low severity. Key findings include Skill Requires Broad Discord Permissions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| INFO | Skill Requires Broad Discord Permissions The skill explicitly states that it requires an active Discord connection via `RUBE_MANAGE_CONNECTIONS` with the `discord` and `discordbot` toolkits. These toolkits provide extensive access to Discord's API, enabling actions such as sending messages, managing channels, creating/deleting roles, and managing webhooks. While necessary for the skill's intended functionality, users should be aware that granting these permissions allows the agent to perform highly privileged operations within Discord. Ensure that the Discord bot or user account connected via Rube MCP has only the minimum necessary permissions required for the specific tasks the skill is intended to perform. Regularly review and audit the permissions granted to the Discord application. | LLM | SKILL.md:20 |
Scan History
Embed Code
[](https://skillshield.io/report/003e768a44eadcad)
Powered by SkillShield