one-drive-automation

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). Overall suspicious: the GitHub path looks like documentation only (lower risk) but the rube.app/mcp endpoint is an untrusted MCP server you are instructed to add (high risk — could deliver commands or binaries), and the OneDrive share is a personal file-hosting link (commonly used to distribute executables); together they present a significant risk of malware or remote-control delivery.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly requires connecting to the Rube MCP server (https://rube.app/mcp) at runtime and instructs calling RUBE_SEARCH_TOOLS/RUBE_MANAGE_CONNECTIONS so that remote tool schemas and responses from that endpoint directly determine the agent's available instructions and runtime behavior, making it a required external dependency that can control prompts.