Skills
skills/skillssh/skills/twitter-thread-creation/Gen Agent Trust Hub

twitter-thread-creation

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references installation instructions and additional content modules from the vendor's GitHub repositories (inference-sh).
  • [COMMAND_EXECUTION]: The skill utilizes the infsh CLI tool via the Bash tool to perform actions such as posting to social media, generating images from HTML, and conducting web searches.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface.
  • Ingestion points: Untrusted data enters the agent's context through the output of web search and browsing tools (SKILL.md).
  • Boundary markers: No specific delimiters or instructions are provided to the agent to ignore potentially malicious directions embedded in the fetched external data.
  • Capability inventory: The skill allows the agent to post content directly to a social media account using the x/post-create tool.
  • Sanitization: There is no evidence of filtering or validation of the retrieved external content before it is processed and published.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 06:43 AM
Security Audit — agent-trust-hub — twitter-thread-creation