posthog-automation

SUSPICIOUS: the skill is internally consistent about using Composio/Rube for PostHog automation, and the endpoint appears officially operated by that vendor, so this is not confirmed malware. However, it routes sensitive analytics data and authenticated PostHog actions through a third-party MCP intermediary, understates the auth/credential implications, and enables impactful write operations; that makes it high security risk despite coherent stated purpose.