x-user-timeline
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill retrieves user-generated content from X (tweets), which introduces a surface for indirect prompt injection. Malicious instructions contained within a tweet could potentially influence the agent's behavior. * Ingestion points:
scripts/timeline.shfetches tweet data from the X API. * Boundary markers: None are present to distinguish tweet content from instructions. * Capability inventory: The skill has access to theBashtool, specificallycurlandjqinscripts/timeline.sh, and the ability to execute other scripts in the plugin root. * Sanitization: No sanitization or filtering of the tweet content is performed before it is returned to the agent. - [EXTERNAL_DOWNLOADS]: The script
scripts/timeline.shfetches data from the official X API (api.x.com) usingcurl.
Audit Metadata