vercel-automation

SUSPICIOUS: the skill's purpose matches its Vercel admin capabilities, and the Rube endpoint appears to be an official Composio service, not a fake installer. However, it routes all sensitive Vercel operations through a third-party MCP intermediary and enables high-impact autonomous changes to deployments, DNS, env vars, and projects, creating medium-high security risk even without clear malware indicators.