Skills
skills/sickn33/antigravity-awesome-skills/zendesk-automation/Gen Agent Trust Hub

zendesk-automation

Warn

Audited by Gen Agent Trust Hub on Apr 26, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to configure a remote MCP server at 'https://rube.app/mcp'. This server provides the tools the agent will use. As this domain is not categorized as a trusted vendor or well-known service provider, it represents an unverified external resource dependency.
  • [PROMPT_INJECTION]: The skill demonstrates a surface for indirect prompt injection.
  • Ingestion points: Data is ingested from external Zendesk tickets, comments, and users via tools like ZENDESK_LIST_ZENDESK_TICKETS and ZENDESK_SEARCH_ZENDESK_USERS.
  • Boundary markers: The skill lacks delimiters or instructions to help the agent ignore commands embedded within the fetched data.
  • Capability inventory: The agent has extensive capabilities (create, update, delete, reply) that could be abused if malicious instructions are processed.
  • Sanitization: No sanitization or validation of external ticket content is described.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 26, 2026, 07:59 AM