userlist-automation

SUSPICIOUS: The skill is broadly coherent with its stated purpose and uses same-org Composio/Rube infrastructure, so it does not look malicious. The main risk is architectural: Userlist access, schemas, and execution are routed through Composio's MCP gateway rather than direct official Userlist APIs, creating moderate credential-forwarding and remote-control trust risk.