Skills
skills/varnan-tech/opendirectory/reddit-post-engine/Gen Agent Trust Hub

reddit-post-engine

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection vulnerability (Category 8).
  • Ingestion points: Fetches untrusted data from the Reddit API (rules, top posts, and sidebar descriptions) using curl in SKILL.md (Step 3).
  • Boundary markers: The skill lacks explicit boundary markers or delimiters in the Gemini prompt template (Step 4) to isolate the external Reddit data from the core drafting instructions.
  • Capability inventory: The skill has access to network tools (curl), local execution (python3), and sensitive environment variables (GEMINI_API_KEY).
  • Sanitization: There is no evidence of sanitization or instruction filtering for the content fetched from Reddit before it is interpolated into the model's prompt.
  • [COMMAND_EXECUTION]: Utilizes shell commands including curl for network retrieval, python3 for JSON parsing of API responses, and cat for preparing temporary files.
  • [EXTERNAL_DOWNLOADS]: Performs network operations to fetch data from Reddit's public API and sends content to the Google Gemini API. These operations target well-known and recognized service providers.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 05:53 PM
Security Audit — agent-trust-hub — reddit-post-engine