muapi-social-pack
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection by interpolating user-controlled data directly into tool prompts.
- Ingestion point: 'caption_idea' input variable in SKILL.md.
- Boundary markers: None present to delimit user input from instructions.
- Capability inventory: Image editing via 'muapi' CLI and network requests via 'curl' as described in SKILL.md.
- Sanitization: No input validation or escaping is performed on the 'caption_idea' content before interpolation.
- [COMMAND_EXECUTION]: The skill instructions direct the agent to execute shell commands using the 'muapi' CLI and 'curl' to interact with remote APIs.
Audit Metadata