viral-hook-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill exhibits vulnerability to indirect prompt injection (Category 8) by design as it processes untrusted user input to generate hooks.
- Ingestion points: User requirements are ingested via the
$ARGUMENTSvariable and follow-up messages inSKILL.md. - Boundary markers: Absent. The instructions do not specify any delimiters (e.g., XML tags or markers) to separate user input from system instructions during processing.
- Capability inventory: The skill is only capable of reading local markdown files (
./references/hook-patterns.md,./references/trigger_words.md, and the optional./FOUNDER_CONTEXT.md) and generating text output. It lacks dangerous capabilities such as network access, shell command execution, or filesystem write permissions. - Sanitization: No sanitization or filtering of user-provided input is performed before it is used in the hook generation process.
Audit Metadata