content-trend-researcher
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMPROMPT_INJECTIONNO_CODE
Full Analysis
- PROMPT_INJECTION (MEDIUM): The skill is highly susceptible to Indirect Prompt Injection by design. It instructs the agent to ingest and analyze content from untrusted external sources including Reddit, X, and various blogs.
- Ingestion points: Multiple external platforms identified in
SKILL.mdas primary data sources. - Boundary markers: Absent; there are no instructions to delimit external content or ignore embedded commands.
- Capability inventory: The skill claims to use 'algorithms' and mentions 'Code Execution Tool' compatibility, implying it may process untrusted data through executable logic.
- Sanitization: No sanitization or filtering of external content is specified.
- NO_CODE (LOW): The skill documentation claims advanced technical capabilities like 'trend analysis algorithms' and 'intent classification,' but no actual source code (Python, JS, etc.) is provided in the skill files. The logic is entirely opaque and relies on the base model's reasoning rather than verifiable scripts.
Audit Metadata