reddit-2
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill functions as an indirect prompt injection surface because it retrieves and processes untrusted text from the internet. \n
- Ingestion points: Reddit post titles and body content are fetched from the public JSON API via the
scripts/reddit_scraper.pyscript. \n - Boundary markers: There are no explicit delimiters or instructions provided to separate fetched Reddit data from the agent's core instructions. \n
- Capability inventory: The skill uses the
requestslibrary for network retrieval and prints data to standard output; it does not possess capabilities for sensitive file access or arbitrary system command execution. \n - Sanitization: Fetched strings from the Reddit API are presented to the agent without sanitization or escaping. \n- [DATA_EXFILTRATION]: The skill performs network operations to fetch data from Reddit's official API (
reddit.com). This is a documented and well-known service intended for the skill's primary purpose and does not involve the exfiltration of sensitive local data. \n- [COMMAND_EXECUTION]: The skill invokes a local Python script to perform scraping tasks, which is the intended core behavior described in the manifest.
Audit Metadata