reddit-insights
Warn
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's installation guide instructs users to download and execute the
reddit-insights-mcppackage from the npm registry. - [REMOTE_CODE_EXECUTION]: The configuration instructions specify the use of
npx -y reddit-insights-mcpto run the MCP server. This pattern involves executing code fetched from a remote repository at runtime on the local machine. - [PROMPT_INJECTION]: The skill functions by retrieving data from Reddit, which is a source of untrusted, user-generated content. This creates a surface for indirect prompt injection attacks where malicious instructions could be embedded in Reddit posts or comments.
- Ingestion points: The tools
reddit_searchandreddit_get_subredditpull text content directly from Reddit into the agent's context. - Boundary markers: The skill does not provide or suggest the use of delimiters or 'ignore' instructions to isolate the retrieved content from the agent's primary system instructions.
- Capability inventory: While the skill itself is primarily instructional, the environment it configures (MCP servers) is designed to give the agent tool-execution capabilities.
- Sanitization: There are no indicated mechanisms for sanitizing, filtering, or validating the content retrieved from the external Reddit API before it is processed by the agent.
Audit Metadata