juejin-article-trends
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill was audited across 10 threat categories and found to be secure.
- [DATA_EXFILTRATION]: The utility makes HTTP GET requests to official Juejin API endpoints (api.juejin.cn) to retrieve public article data. No sensitive local files or credentials are accessed or exfiltrated.
- [COMMAND_EXECUTION]: The script processes CLI arguments to filter article categories. It uses parseInt() to sanitize numeric inputs and does not execute arbitrary shell commands.
- [PROMPT_INJECTION]: The skill retrieves article titles and summaries which could contain malicious instructions from third parties. However, the risk is negligible as the skill lacks any capabilities (such as file writing or code execution) that would allow an injection to cause harm. Ingestion points: scripts/juejin.js (retrieves data from Juejin API). Boundary markers: None. Capability inventory: Limited to network GET requests and console output. Sanitization: Content is rendered as plain text without further validation.
Audit Metadata