Skills
skills/letta-ai/lettabot/blogwatcher/Gen Agent Trust Hub

blogwatcher

Warn

Audited by Gen Agent Trust Hub on Mar 11, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of a Go binary from a third-party GitHub repository not associated with trusted organizations.
  • Evidence: The installation instructions specify github.com/Hyaxia/blogwatcher/cmd/blogwatcher@latest as the source for the tool.
  • [COMMAND_EXECUTION]: The skill's operation depends on the execution of the third-party blogwatcher CLI tool.
  • Evidence: Multiple commands such as blogwatcher scan and blogwatcher articles are documented for use.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its processing of untrusted external content.
  • Ingestion points: Data is ingested from external RSS/Atom feeds via the scan and articles subcommands.
  • Boundary markers: Absent. The skill does not provide any instructions or delimiters to help the agent distinguish between data and potential commands within the feed content.
  • Capability inventory: The skill utilizes the blogwatcher binary to fetch and display content from external URLs.
  • Sanitization: Absent. The skill definition includes no logic for sanitizing or validating the content retrieved from external feeds.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 11, 2026, 11:40 PM