aero-workflow-automation
Warn
Audited by Socket on Jun 17, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: The skill's purpose matches its capability, and the publisher/source relationship appears coherent with Composio's official Rube MCP docs. The main concern is data-flow integrity: all Aero Workflow operations and auth are mediated by Composio's hosted MCP service rather than direct official API calls, and the 'no API keys needed' wording is somewhat misleading. This is not confirmed malware, but it carries medium risk due to third-party credential and data brokering.
Confidence: 84%Severity: 52%
Audit Metadata