Skills
skills/apify/awesome-skills/apify-financial-osint/Gen Agent Trust Hub

apify-financial-osint

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing the apify-cli tool globally via npm (npm install -g apify-cli). This is a legitimate tool from a well-known automation platform used for its intended purpose within the skill.
  • [COMMAND_EXECUTION]: The workflow involves the agent executing shell commands using the apify CLI to call remote actors. These commands use JSON inputs constructed from project data (e.g., data/osint-targets.json) or potentially user-provided terms. While the instructions provide templates and usage of jq to handle input structure, the pattern of interpolating data into shell commands remains an attack surface for command injection.
  • [PROMPT_INJECTION]: The skill processes data from external social media platforms (Reddit, Twitter, Trustpilot) which introduces a risk of indirect prompt injection.
  • Ingestion points: Actor output processed in SKILL.md (e.g., Reddit posts, tweets, and reviews).
  • Boundary markers: None explicitly mentioned; the skill does not instruct the agent to use delimiters or warnings when processing the scraped text.
  • Capability inventory: The skill possesses command execution capabilities (apify call in SKILL.md).
  • Sanitization: No explicit sanitization or filtering of the content for instructions is described, though Step 4b includes a relevance filter.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 12:40 PM
Security Audit — agent-trust-hub — apify-financial-osint