reddit-search
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes and displays untrusted data from Reddit, including subreddit descriptions (about.description), public descriptions (about.public_description), and post titles (post.title). This creates an indirect prompt injection surface where an attacker could place malicious instructions in a subreddit's metadata or top posts to influence the agent's behavior when it reads this data.
- Ingestion points: Data is fetched from Reddit's JSON API endpoints (
/r/{name}/about.json,/subreddits/search.json,/r/{name}/{sort}.json) inscripts/reddit-search.ts. - Boundary markers: None. The skill prints raw strings directly to the console without delimiters or instructions to the agent to ignore embedded commands.
- Capability inventory: The skill uses
axiosfor network requests but does not appear to perform file writes or execute arbitrary sub-processes. - Sanitization: No sanitization or filtering is performed on the text content retrieved from Reddit before it is displayed to the user/agent.
Audit Metadata