xurl
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION]: Fetches and executes an installation script from the X developer platform's official GitHub repository (
xdevplatform/xurl) using a pipe-to-bash pattern. - [EXTERNAL_DOWNLOADS]: References official distribution channels including npm (@xdevplatform/xurl), Homebrew, and Go for CLI installation.
- [DATA_EXPOSURE]: The skill ingests untrusted data from the X API which could contain malicious content, presenting an indirect prompt injection surface. * Ingestion points: Data returned from xurl mentions, xurl search, and xurl timeline commands. * Boundary markers: Absent; the skill does not define specific delimiters for processed API data. * Capability inventory: Includes write-access commands like xurl post, xurl reply, and xurl dm. * Sanitization: Absent; the skill relies on the structured JSON output provided by the CLI.
- [CREDENTIALS_UNSAFE]: Contains extensive defensive instructions (MANDATORY Secret Safety) that strictly prohibit the agent from reading the ~/.xurl configuration file or requesting secrets from the user.
Audit Metadata