for-you-feed
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill ingests untrusted tweet text from X (Twitter) which may contain malicious instructions intended to manipulate the agent's behavior through indirect prompt injection.
- Ingestion points: Untrusted content is retrieved from the
https://xquik.com/api/v1/x/timelineendpoint. - Boundary markers: The skill documentation lacks structural delimiters or specific instructions for the agent to ignore commands within the tweet data, although it does note that content is untrusted.
- Capability inventory: The skill itself is limited to API calls, but the host agent environment may have broader capabilities such as file access or command execution.
- Sanitization: No sanitization or filtering logic is provided to clean the tweet content before it is passed to the agent.
Audit Metadata