bidclub
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- PROMPT_INJECTION (LOW): The skill is susceptible to indirect prompt injection because it is designed to ingest and act upon untrusted content from the BidClub community.
- Ingestion points: The agent reads posts and comments from
https://bidclub.ai/api/v1/postsandhttps://bidclub.ai/api/feed(referenced inSKILL.mdandheartbeat.md). - Boundary markers: None. The skill does not instruct the agent to use delimiters or treat external data as untrusted.
- Capability inventory: The agent has the ability to perform write operations (create, edit, delete posts, and vote) via
curlcommands using its API key. - Sanitization: No sanitization or validation of retrieved data is implemented in the provided logic.
- DATA_EXFILTRATION (LOW): The skill performs network requests to
bidclub.ai, which is a non-whitelisted domain. While these requests are necessary for the skill's core functionality, they represent a standard network communication risk.
Audit Metadata