tiktok-influencer-finder

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local script find_influencers.py to perform API calls and process results.
  • [EXTERNAL_DOWNLOADS]: The script communicates with trusted API endpoints at api.apify.com and api.gooseworks.ai to retrieve influencer information.
  • [CREDENTIALS_UNSAFE]: The skill utilizes APIFY_API_TOKEN and GOOSEWORKS_API_KEY environment variables for authentication, which is a standard practice for this type of integration.
  • [PROMPT_INJECTION]: The skill processes untrusted content from TikTok profiles which could potentially contain malicious instructions. Ingestion points: TikTok profile metadata (biographies and descriptions) retrieved via the Apify API. Boundary markers: Absent. Capability inventory: The skill utilizes subprocess execution to run the Python discovery script. Sanitization: Absent; profile content is not escaped or validated for instruction-like patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 01:07 PM
Security Audit — agent-trust-hub — tiktok-influencer-finder