Skills
skills/postplusai/postplus-skills/instagram-campaign-scout/Gen Agent Trust Hub

instagram-campaign-scout

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The script download_videos_from_manifest_with_ytdlp.mjs utilizes child_process.spawn to execute python3 -m yt_dlp. This is used to download media assets identified during the campaign scouting process in a shell-safe manner.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates data collection by making network requests to the PostPlus Cloud API and downloads media content from Instagram's content delivery networks based on public post data.
  • [SAFE]: The skill manages authentication by reading session tokens from the vendor's local configuration directory (e.g., ~/.config/postplus/config.json). No sensitive data is exposed to unauthorized third parties, and all external communications are directed to the vendor's own infrastructure or established social media platforms.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 07:52 PM