Skills
skills/aalvaaro/skills/content-media-plan/Gen Agent Trust Hub

content-media-plan

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands to check for the presence of the infsh CLI tool and to run image generation tasks using the falai/flux-dev-lora model.- [EXTERNAL_DOWNLOADS]: The agent is directed to fetch and process data from external websites and multiple social media platforms (Instagram, TikTok, Facebook, YouTube) provided by the user using various scraping tools.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted data from external sources without sufficient isolation.
  • Ingestion points: Scraping of brand websites via FirecrawlScrapeTool and social media profiles via Social Toolkit MCP.
  • Boundary markers: The instructions lack explicit delimiters or 'ignore' directives to separate scraped content from the agent's core logic.
  • Capability inventory: The skill has the ability to write to the local file system, interact with the Notion API, and execute shell commands via the infsh CLI.
  • Sanitization: No sanitization or validation of the retrieved web content is performed before it is used to generate the brand strategy and content hooks.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 08:06 PM