Skills
skills/idanbeck/claude-skills/reddit-skill/Gen Agent Trust Hub

reddit-skill

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted data from an external source (Reddit).
  • Ingestion points: reddit_skill.py retrieves untrusted text from the Reddit API via commands like frontpage, subreddit, search, and inbox.
  • Boundary markers: Content fetched from Reddit is provided to the agent without any delimiters or specific instructions to ignore embedded commands.
  • Capability inventory: The skill allows the agent to use the Bash tool to execute commands, creating a potential path for malicious input to trigger unintended actions.
  • Sanitization: External content is truncated to 500 characters but is not otherwise sanitized or escaped to prevent the agent from interpreting it as instructions.
  • [COMMAND_EXECUTION]: The skill relies on the Bash tool to execute its core logic via a Python script. While this is the intended design, it provides the environment where potential prompt injections could manifest as command-line arguments or instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 03:20 PM