Skills
skills/gooseworks-ai/goose-skills/meta-ad-scraper/Gen Agent Trust Hub

meta-ad-scraper

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches data from Apify's official API (api.apify.com). Apify is a well-known and established automation platform.
  • [DATA_EXFILTRATION]: Accesses the APIFY_API_TOKEN environment variable to authenticate with the external API. This follows best practices for credential management by avoiding hardcoded secrets.
  • [PROMPT_INJECTION]: Features an indirect prompt injection surface by ingesting untrusted ad content from external web pages.
  • Ingestion points: Data is retrieved from the Apify dataset items endpoint in scripts/search_meta_ads.py.
  • Boundary markers: Scraped content is printed directly to the output without delimiters or specific instructions for the agent to ignore embedded commands.
  • Capability inventory: The script performs network operations using the requests library.
  • Sanitization: No sanitization or filtering is performed on the raw ad text returned from the Meta Ad Library.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 09:58 PM