viral-thread-generation
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data from X (Twitter) search results and profiles, creating a potential surface for indirect prompt injection where external content could influence agent behavior.
- Ingestion points: Content is ingested via tool calls to x_search_tweets, x_get_tweets, and x_get_followers.
- Boundary markers: No specific delimiters or instructions are used to distinguish external data from the agent's core instructions.
- Capability inventory: The agent's capabilities in this skill are limited to text generation for thread drafts.
- Sanitization: No sanitization or filtering of the external social media content is performed prior to processing.
Audit Metadata