The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill instructs the user to install the vendor-owned @degausai/wonda CLI package and the patchright automation tool via NPM. It also recommends using Homebrew to tap degausai/tap and install the wonda package. These are documented as necessary setup steps for the service's functionality.\n- [COMMAND_EXECUTION]: The skill facilitates the execution of numerous shell commands for the wonda CLI to perform media generation, editing, and social media automation. It also includes local execution patterns for ffmpeg and ffprobe to process media files on the agent's local filesystem.\n- [DATA_EXFILTRATION]: The skill allows the agent to upload local media files to the wondercat.ai platform for processing. It also enables scraping of data from external platforms (X, LinkedIn, Reddit, Instagram, TikTok), which is then transmitted to the vendor's API for analysis and research purposes.\n- [PROMPT_INJECTION]: The skill exhibits an Indirect Prompt Injection surface (Category 8) by processing untrusted data from external social media sources. \n
Ingestion points: Untrusted content enters the agent context through scraping and search commands such as wonda x search, wonda reddit search, wonda scrape social, and wonda linkedin profile (defined in SKILL.md).\n
Boundary markers: No explicit markers or instructions to disregard embedded commands in the scraped content are provided in the skill.\n
Capability inventory: The agent possesses extensive capabilities, including publishing to social media (wonda publish), interacting with accounts (wonda x tweet, wonda linkedin connect, wonda reddit submit), and simulating device inputs (wonda device tap/type/swipe) as documented in SKILL.md.\n
Sanitization: There is no evidence of sanitization or filtering of the ingested social media data before it is utilized by the agent for decision-making or content generation tasks.

wonda-cli