Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [DATA_EXFILTRATION]: The skill uses
curlto fetch public data from Reddit's official JSON API (reddit.com). This is a well-known service and the activity is consistent with the skill's primary purpose. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its ingestion of untrusted data from Reddit posts, comments, and wikis.
- Ingestion points: Untrusted data enters the system through
reddit.shmodes such asfetch,comments,search, andwiki. - Boundary markers: No explicit delimiters or specialized instructions are present to prevent the agent from following commands embedded within the fetched Reddit content.
- Capability inventory: The skill can execute network requests via
curl, write local state and report files, and manage configuration settings. - Sanitization: While the tool performs basic filtering for spam accounts and deleted posts, it lacks sanitization of natural language content to mitigate the risk of adversarial instructions being processed by the AI.
Audit Metadata