Skills
skills/merit-systems/x402scan-skills/social-intelligence/Gen Agent Trust Hub

social-intelligence

Fail

Audited by Gen Agent Trust Hub on Feb 20, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • EXTERNAL_DOWNLOADS (HIGH): The installation instructions in rules/getting-started.md require running npx @x402scan/mcp install. This downloads code from an untrusted npm package registry which is not part of the established trusted organizations.
  • REMOTE_CODE_EXECUTION (HIGH): The use of npx to install and run the @x402scan/mcp tool constitutes execution of arbitrary remote code on the local machine.
  • DATA_EXFILTRATION (LOW): The skill performs network requests to https://enrichx402.com, a non-whitelisted domain. While primarily used for fetching data, communication with untrusted external domains represents a data exposure risk.
  • PROMPT_INJECTION (LOW): This skill is vulnerable to Indirect Prompt Injection (Category 8).
  • Ingestion points: Data is fetched from X/Twitter and Reddit via the x402.fetch tool in SKILL.md.
  • Boundary markers: None. The instructions do not define delimiters for the external content or warn the agent to ignore embedded instructions.
  • Capability inventory: The skill utilizes x402.fetch, x402.discover_api_endpoints, and x402.get_wallet_info. The installed MCP could potentially have broader system access.
  • Sanitization: No evidence of sanitization or filtering of the fetched social media content before it is processed by the agent.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 20, 2026, 12:03 AM