user
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a structured way to interact with the official X API (api.x.com) to retrieve user profile information. It follows best practices by using a managed gateway for authentication.
- [DATA_EXFILTRATION]: Accesses the authenticated user's profile on X, including ID, name, and username. This is the intended primary purpose of the skill. No evidence of unauthorized data transmission or hardcoded credentials was found.
- [PROMPT_INJECTION]: The skill ingests data from an external API (api.x.com). While this is an ingestion point for untrusted data, the risk is negligible as the skill only performs a read operation and maps the response to specific structured fields, preventing the execution of embedded instructions.
Audit Metadata