exa-search
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The installation command 'npx skills add -g BenedictKing/exa-search' pulls content from a GitHub repository owned by an untrusted user. This source is not included in the trusted organizations list, necessitating manual code review before installation.
- [PROMPT_INJECTION] (LOW): This skill is vulnerable to indirect prompt injection as it ingests untrusted search results from the Exa API. Evidence: 1. Ingestion point: Exa API results; 2. Boundary markers: Absent; 3. Capability inventory: Web search and structured research; 4. Sanitization: Not specified in documentation.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded credentials or API keys were detected; the skill recommends using environment variables for configuration.
- [DATA_EXFILTRATION] (SAFE): No evidence of sensitive file access or unauthorized data transmission was found in the provided documentation.
Audit Metadata