publish-x-article
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill requires installing
Pillowandpyobjc-framework-Cocoavia pip. These are standard, well-known libraries used for image processing and macOS system clipboard integration. - COMMAND_EXECUTION (LOW): The skill executes local Python scripts (
parse_markdown.py,copy_to_clipboard.py) to process content. This is expected behavior for a developer-oriented skill. - PROMPT_INJECTION (LOW): Category 8: Indirect Prompt Injection surface.
- Ingestion points: The skill processes external Markdown files provided via the
article_md_pathinput. - Boundary markers: The skill does not explicitly use delimiters or "ignore instructions" warnings when processing the Markdown content.
- Capability inventory: The skill uses browser automation (Playwright) and clipboard manipulation to transfer content to the X Articles editor.
- Sanitization: There is no evidence of sanitization or filtering of the Markdown content to prevent embedded instructions from influencing the agent's browser automation steps.
Audit Metadata