anysite-trend-analysis
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (HIGH): The skill's core functionality involves ingesting untrusted data from social media platforms, which is a high-risk vector for malicious instructions.\n
- Ingestion points:
SKILL.mddefines several tools (search_twitter_posts,search_reddit_posts,get_reddit_post_comments,search_youtube_videos,search_linkedin_posts,search_instagram_posts) that pull arbitrary user-generated content into the agent's context.\n - Boundary markers: There are no specified delimiters or instructions to treat the social media content as strictly non-executable data, allowing the agent to potentially obey commands embedded in posts.\n
- Capability inventory: The skill is tasked with generating "Strategic recommendations" and "Strategic implications." Malicious content in the feed could therefore bias or hijack the agent's reasoning process and influence subsequent tool use.\n
- Sanitization: The skill lacks any mechanism for filtering, sanitizing, or validating the ingested content before it is processed by the agent.
Recommendations
- AI detected serious security threats
Audit Metadata