Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill documentation and metadata do not contain any hardcoded credentials, obfuscated logic, or malicious instructions. Authentication is handled using environment variables with clear placeholders for the user.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it is designed to ingest and process untrusted data from the Twitter/X platform.
- Ingestion points: Mentions, timelines, and search results (SKILL.md).
- Boundary markers: No delimiters or instructions to ignore embedded commands are provided.
- Capability inventory: The skill utilizes curl and jq for network requests and JSON data processing (SKILL.md).
- Sanitization: No data validation or sanitization mechanisms are described for the external content.
Audit Metadata