x-twitter-scraper
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructions include steps to download the tool using
npxorgit clonefrom thegithub.com/Xquik-dev/x-twitter-scraperrepository. - [DATA_EXFILTRATION]: The skill performs network operations to
xquik.comfor data retrieval and webhook management. This behavior is consistent with the skill's stated purpose as a data extraction and monitoring tool. - [PROMPT_INJECTION]: The skill exposes an indirect prompt injection surface by processing untrusted data from X (Twitter), such as tweets and user bios.
- Ingestion points: API responses from
xquik.comcontaining external social media content. - Boundary markers: Not present; the instructions do not specify delimiters for external data.
- Capability inventory: Network access for data polling and webhook registration.
- Sanitization: No sanitization or filtering of external content is mentioned in the provided documentation.
Audit Metadata