social-intelligence
Warn
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [External Downloads] (MEDIUM): The skill installs the
mcporterpackage from the npm registry. Neither the package nor its author are in the trusted sources list, posing a supply chain risk. - [Command Execution] (LOW): The skill relies on executing the
mcporterCLI tool to perform its operations. - [Data Exposure & Exfiltration] (LOW): The skill communicates with
mcp.xpoz.ai, which is not on the whitelist of trusted domains for network operations. - [Indirect Prompt Injection] (LOW): The skill processes massive amounts of untrusted data from social media. Evidence Chain: * Ingestion points: Data from Twitter, Instagram, and Reddit via
mcp.xpoz.ai(SKILL.md). * Boundary markers: None identified; the skill lacks explicit markers or safety instructions to prevent the model from following instructions embedded in processed posts. * Capability inventory: Search, sentiment analysis, and profile retrieval across social platforms (SKILL.md). * Sanitization: No sanitization or filtering is described to remove potentially malicious instructions from retrieved social media content.
Audit Metadata