labs64-netlicensing-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill requires calling RUBE_SEARCH_TOOLS against the external Rube MCP endpoint (https://rube.app/mcp) to fetch current tool schemas and recommended execution plans, which the agent must read and use to shape tool invocation and therefore could contain untrusted third‑party content that materially influences behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires connecting to the Rube MCP endpoint (https://rube.app/mcp) at runtime and calls RUBE_SEARCH_TOOLS to fetch tool schemas and recommended execution plans which directly control agent instructions and are a required dependency.