Skills
NYC
skills/geekjourneyx/ai-daily-skill/ai-daily-news/Gen Agent Trust Hub

ai-daily-news

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION] (LOW): Potential for Indirect Prompt Injection through ingestion of untrusted RSS feed data.
  • Ingestion points: The script scripts/fetch_news.py fetches content from https://news.smol.ai/rss.xml.
  • Boundary markers: Absent. The templates in references/html-themes.md and references/output-format.md interpolate data using {markdown_content} without delimiters or instructions to ignore embedded instructions.
  • Capability inventory: scripts/fetch_news.py performs network operations (requests.get); usage notes in references/html-themes.md indicate a file-writing capability (docs/ directory).
  • Sanitization: Absent. The script fetch_news.py specifically reverts HTML entity encoding (e.g., &lt; to <), passing raw external markup directly into the LLM context.
  • [EXTERNAL_DOWNLOADS] (SAFE): The skill fetches data from smol.ai, which is consistent with its stated purpose. It requires standard dependencies (requests, feedparser).
  • [COMMAND_EXECUTION] (SAFE): The Python script is a tool for the agent to execute, but it does not perform arbitrary command execution or shell spawning.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:30 PM