news-catcher
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
playwrightPython library and the Chromium browser engine to perform web scraping tasks. - [COMMAND_EXECUTION]: Setup instructions include shell commands for dependency installation and browser engine setup.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data from multiple external news websites. Ingestion points: Untrusted data is ingested from various third-party domains listed in
websites.txtthrough Playwright navigation. Boundary markers: The sub-agent instructions do not include specific delimiters or directives to ignore instructions that might be embedded within the scraped news content. Capability inventory: The skill has the capability to write aggregated report files to the local file system at~/.local/newsCache. Sanitization: No sanitization or filtering mechanism is defined to strip potential instructions from the scraped text before summarization.
Audit Metadata