feed-decrypt

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is designed as a news source adapter. It fetches publicly available RSS data from a well-known cryptocurrency news outlet (decrypt.co) and converts it into a structured JSON format.
  • [COMMAND_EXECUTION]: Mentions the use of standard tools like curl, python, or web_fetch to perform the data retrieval, which is appropriate for its stated purpose as a news aggregator.
  • [DATA_EXFILTRATION]: Network operations are restricted to the verified news endpoint https://decrypt.co/feed. No sensitive local files or environment variables are accessed or transmitted.
  • [PROMPT_INJECTION]: The skill processes external text from RSS feeds (titles and descriptions). It includes explicit instructions to strip HTML tags and prohibits the fabrication of content, which reduces the surface area for indirect prompt injection and ensures data integrity.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 08:03 AM
Security Audit — agent-trust-hub — feed-decrypt