search-reddit
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it enriches search results with excerpts and comments from Reddit. An attacker could craft a Reddit post with instructions that might influence the agent's behavior when the content is retrieved and processed. 1. Ingestion points: The script scripts/search.js fetches post data and comments from reddit.com. 2. Boundary markers: The documentation does not specify the use of delimiters to separate untrusted Reddit content from agent instructions. 3. Capability inventory: The skill can execute local Node.js scripts and make network requests. 4. Sanitization: There is no mention of sanitizing or filtering the retrieved Reddit content before it is passed to the agent.
- [COMMAND_EXECUTION]: The skill executes a local Node.js script (scripts/search.js) to perform its core functionality. This is a standard and expected behavior for this skill.
Audit Metadata