Skills
skills/terminalskills/skills/reddit-insights/Gen Agent Trust Hub

reddit-insights

Pass

Audited by Gen Agent Trust Hub on Mar 11, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core function of processing untrusted data from an external source.
  • Ingestion points: The skill fetches Reddit posts and comments via the search_reddit and get_post_comments Python functions.
  • Boundary markers: No delimiters or instructions are provided to the agent to treat the fetched content as untrusted or to ignore embedded instructions.
  • Capability inventory: The skill utilizes the requests library for network access and the bash shell for writing files to the disk.
  • Sanitization: No sanitization or filtering logic is implemented to strip potentially malicious directives from the fetched Reddit content before it is processed by the agent.
  • [EXTERNAL_DOWNLOADS]: The skill fetches data from reddit.com. This is a well-known service and the operation is necessary for the skill's stated purpose of Reddit research.
  • [COMMAND_EXECUTION]: The skill instructs the agent to use a shell command (cat) to save the research report to the local file system. This is a standard operation for data persistence.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 11, 2026, 06:21 PM