Skills
skills/1nfsh-s3/skills/twitter-automation/Gen Agent Trust Hub

twitter-automation

Fail

Audited by Gen Agent Trust Hub on Feb 19, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [Remote Code Execution] (CRITICAL): The skill promotes the execution of a remote script from https://cli.inference.sh by piping it directly to the shell. This is an unverified execution of remote code from a non-whitelisted source. It also suggests using 'npx' to add additional skills, which executes remote packages.
  • [Command Execution] (HIGH): The skill requires the 'Bash(infsh *)' tool, granting the agent the ability to execute any command within the 'infsh' CLI ecosystem.
  • [Indirect Prompt Injection] (LOW): The skill accepts untrusted data into CLI command arguments without sanitization or boundary markers. (1) Ingestion: --input parameters in SKILL.md. (2) Boundaries: Absent. (3) Capabilities: Bash(infsh *) tool. (4) Sanitization: Absent.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 19, 2026, 07:34 PM