Skills
skills/athina-ai/goose-skills/kol-content-monitor/Gen Agent Trust Hub

kol-content-monitor

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands to trigger internal Python scripts for content scraping from LinkedIn and Twitter. This activity is the primary function of the skill and uses local script paths.
  • [PROMPT_INJECTION]: The skill processes social media posts from external sources, which presents an indirect prompt injection surface.
  • Ingestion points: Data is ingested from external LinkedIn and Twitter profiles at runtime.
  • Boundary markers: The instructions do not specify the use of clear delimiters or guardrail instructions to isolate the scraped content from the agent's logic.
  • Capability inventory: The skill has the capability to write files to the local client directory and execute shell commands for scraping.
  • Sanitization: There is no evidence of filtering or sanitizing the scraped content before it is processed by the model for clustering and summarization.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 01:36 PM