reddit-posts
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to generate content based on Reddit norms and community culture, which typically involves the agent interpreting or responding to external data (Reddit threads, comments, or topics). This creates an attack surface for indirect prompt injection.
- Ingestion points: Processes user-provided content related to Reddit threads or marketing goals as described in the metadata and core rules.
- Boundary markers: The skill lacks explicit delimiters (e.g., XML tags or clear separators) or specific instructions to ignore malicious commands embedded within the data it processes.
- Capability inventory: There are no capabilities for network access, file system manipulation, or subprocess execution documented in the skill.
- Sanitization: No evidence of input validation or content filtering to prevent the execution of instructions embedded in the processed Reddit data.
- [NO_CODE]: The skill consists entirely of Markdown-based guidelines and does not include any associated Python scripts, Node.js packages, or shell commands, which significantly limits the potential for technical exploitation or system-level damage.
Audit Metadata