twitter-automation

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). These URLs point to an unknown third-party domain and the skill explicitly instructs piping a remote installer (curl https://cli.inference.sh | sh) which downloads and executes code without inspection—a high-risk distribution pattern—even though the other docs/pages are just references.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls Twitter/X APIs (e.g., x/post-get and x/user-get) to fetch tweets and user profiles—public, user-generated content—which the agent is expected to read or process as part of its workflows, allowing indirect prompt injection.