Skills
skills/wangdefou-dev/defou-workflow-agent/tophub-trends/Gen Agent Trust Hub

tophub-trends

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it processes untrusted data from an external source and includes it in the LLM prompt.
  • Ingestion points: The script tophub.ts fetches real-time trending titles and sources from the TopHub website using fetchHotList().
  • Boundary markers: The prompt template in analyzeHotList lacks explicit delimiters or instructions to ignore potential commands embedded within the scraped data.
  • Capability inventory: The skill has the ability to write files to the local system (fs.writeFileSync) and interact with the LLM API.
  • Sanitization: There is no evidence of sanitization or filtering of the fetched content before it is interpolated into the analysis prompt.
  • [EXTERNAL_DOWNLOADS]: The skill fetches real-time trending data from the well-known TopHub service (tophub.today) to provide its core functionality.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 02:25 AM