Skills
skills/athina-ai/goose-skills/linkedin-profile-post-scraper/Gen Agent Trust Hub

linkedin-profile-post-scraper

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The documentation in SKILL.md identifies a dependency on the requests Python library, which must be installed via pip.
  • [COMMAND_EXECUTION]: The skill's primary functionality is delivered through the execution of scripts/scrape_linkedin_posts.py to interact with the Apify API.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to the processing of untrusted data from external LinkedIn profiles.
  • Ingestion points: Untrusted post content is retrieved from LinkedIn profiles using the Apify actor harvestapi/linkedin-profile-posts as seen in scripts/scrape_linkedin_posts.py.
  • Boundary markers: The script does not utilize boundary markers or explicit instructions to the agent to disregard instructions embedded within the scraped text.
  • Capability inventory: The skill possesses the capability to perform network operations (GET and POST requests) to the Apify API.
  • Sanitization: No sanitization, escaping, or filtering of the scraped LinkedIn post content is performed before the data is returned to the agent context.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 06:02 PM