social-post
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from external URLs through the WebFetch tool, which presents a surface for indirect prompt injection.
- Ingestion points: External content from URLs provided by the user is ingested for analysis in SKILL.md.
- Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands within the fetched content.
- Capability inventory: The skill is restricted to text generation and does not have capabilities for file system access, arbitrary shell execution, or additional network operations.
- Sanitization: There is no evidence of validation or sanitization for content retrieved from external sources.
Audit Metadata