Skills
skills/ascend-ai-coding/awesome-ascend-skills/hiascend-forum-fetcher/Gen Agent Trust Hub

hiascend-forum-fetcher

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The script uses standard command-line argument parsing and executes focused logic for data retrieval and Excel generation. No arbitrary command execution or shell injection vulnerabilities were detected.
  • [EXTERNAL_DOWNLOADS]: The skill makes network requests to the hiascend.com API to retrieve public forum content. These operations are limited to the intended functionality of the skill and target a specific service.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes external data (forum post titles and content) from the Ascend Community API.
  • Ingestion points: Data is fetched via the fetch_page function in scripts/fetch_hiascend_forum.py.
  • Boundary markers: None implemented; the tool processes the data for export as-is.
  • Capability inventory: Uses requests.get for data retrieval and pandas for writing Excel files to the local file system.
  • Sanitization: None detected; the script extracts fields like title and sectionName directly. While this presents a surface for indirect injection if the resulting Excel file is subsequently processed by an agent, the risk is negligible for this specific data collection task.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 06:27 AM
Security Audit — agent-trust-hub — hiascend-forum-fetcher