hacker-news-scraper
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is subject to indirect prompt injection because it ingests and processes untrusted content from the Hacker News community.
- Ingestion points: The
scripts/search_hn.pyscript fetches data from the externalhn.algolia.comAPI based on search queries. - Boundary markers: Absent. The skill does not use specific delimiters or instructions to warn the agent that the fetched content may contain malicious instructions.
- Capability inventory: The skill itself does not have dangerous capabilities such as file system writes, privilege escalation, or arbitrary command execution, which significantly limits the potential impact of an injection attack.
- Sanitization: No sanitization or filtering is performed on the retrieved text content before it is presented to the agent.
Audit Metadata