gamer-news
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches content from several well-known gaming news outlets including IGN, Kotaku, GameSpot, Polygon, Eurogamer, and others. These are legitimate public RSS feeds used for their intended purpose of news aggregation.
- [DATA_EXFILTRATION]: The skill performs network GET requests to retrieve news data from official feeds. This behavior is consistent with the skill's primary function and targets well-known public domains, presenting no risk of sensitive data exfiltration.
- [PROMPT_INJECTION]: The skill is a news aggregator that processes external content, creating a surface for indirect prompt injection. However, since it targets a curated list of reputable sources, the risk is minimal.
- Ingestion points: RSS feed URLs listed in
SKILL.md(e.g.,https://kotaku.com/rss) and full article content fetched on demand. - Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present when passing fetched content to the model.
- Capability inventory: Network GET requests to fetch external data; no file-system write or subprocess capabilities detected across scripts.
- Sanitization: No specific sanitization or filtering of the fetched content is described before it is summarized by the model.
Audit Metadata