freeUnlimited-websearch
Warn
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install 'ddgs' via pip, which is not the standard 'duckduckgo-search' library. The script also uses a non-standard import 'from ddgs import DDGS'. This represents an unverifiable dependency risk as installing unofficial packages can lead to the execution of untrusted third-party code.
- [COMMAND_EXECUTION]: The search functionality in 'search.py' is implemented using the aforementioned unofficial 'ddgs' package. While the code logic itself is simple, the execution context is compromised by the reliance on an unverified external library.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection. Evidence: (1) Ingestion points: 'search.py' fetches data via the 'DDGS' class; (2) Boundary markers: Absent in the JSON output; (3) Capability inventory: Network access for web searching; (4) Sanitization: No validation or cleaning of search results is performed before returning them to the agent.
Audit Metadata