gif-search
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: Uses the TENOR_API_KEY environment variable for authentication, which is a recommended security practice for managing secrets.- [EXTERNAL_DOWNLOADS]: Fetches GIF metadata and media files from tenor.googleapis.com, which is a well-known and trusted service provided by Google.- [COMMAND_EXECUTION]: Uses standard system utilities curl and jq to interact with the API and process the results.- [INDIRECT_PROMPT_INJECTION]: Ingestion points: The skill fetches JSON data and GIF files from the Tenor API (SKILL.md). Boundary markers: No explicit boundary markers or instructions to disregard embedded content are present in the prompt templates. Capability inventory: The skill uses curl for network requests and file writing, and jq for JSON processing (SKILL.md). Sanitization: Content is parsed using jq, which limits the risk to structured data within the JSON response.
Audit Metadata