twitter-thread-creation
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill provides a command to fetch and execute an installation script from https://cli.inference.sh using a piped-to-shell pattern. This is a vendor-provided installation method.
- [EXTERNAL_DOWNLOADS]: The installation process downloads platform-specific binaries and verifies their integrity using checksums from dist.inference.sh.
- [COMMAND_EXECUTION]: Utilizes the Bash tool to run infsh commands for posting tweets, conducting web searches via Tavily, and performing browser-based actions.
- [DATA_EXFILTRATION]: Provides functionality to send user-generated text and media to the X platform using the x/post-create tool.
- [PROMPT_INJECTION]: An indirect prompt injection surface is present where user-supplied content is used as input for tweet creation tools. Ingestion points: User-provided text for thread generation. Boundary markers: Absent. Capability inventory: Shell execution (Bash) and network operations (infsh). Sanitization: None described.
Audit Metadata