Skills
skills/echosell/keyapi-skills/keyapi-reddit-content-analytics/Gen Agent Trust Hub

keyapi-reddit-content-analytics

Pass

Audited by Gen Agent Trust Hub on Mar 24, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a Node.js runner script (scripts/run.js) to interact with the external MCP server.
  • [EXTERNAL_DOWNLOADS]: The runner script connects to the official vendor domain at mcp.keyapi.ai to fetch Reddit content and metadata.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted content from Reddit. 1. Ingestion points: Reddit posts, comments, and user activity fetched via scripts/run.js. 2. Boundary markers: No explicit delimiters are defined in the instructions to separate fetched content from agent logic. 3. Capability inventory: Includes file system write access for caching and network access to the vendor API. 4. Sanitization: The tool provides a need_format parameter to retrieve sanitized or cleaned response data.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 24, 2026, 12:10 PM