baoyu-danger-x-to-markdown
Converts X (Twitter) tweets and articles to markdown with YAML front matter. Uses reverse-engineered API requiring user consent. Use when user mentions "X to markdown", "tweet to markdown", "save tweet", or provides x.com/twitter.com URLs for conversion.
70
88%
Does it follow best practices?
Impact
—
No eval scenarios have been run
Risky
Do not use without reviewing
Security
2 findings — 1 high severity, 1 medium severity. You should review these findings carefully before considering using this skill.
W008: Secret detected in skill content (API keys, tokens, passwords)
What this means
Detected sensitive credentials directly embedded within the skill content, such as API keys, access tokens, private keys, or service-specific secrets. Secrets should never be hardcoded in plain text within skill instructions.
Why it was flagged
Secret detected (high risk: 1.00). I scanned the repository for literal credentials. I found a high-entropy bearer token hardcoded in scripts/constants.ts:
W011: Third-party content exposure detected (indirect prompt injection risk)
What this means
The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.
Why it was flagged
Third-party content exposure detected (high risk: 0.85). The skill fetches outsider-authored free text from X at runtime (e.g., tweet/article content and referenced tweet text) via `fetchTweetResult`/`fetchXArticle` GraphQL calls, then passes that extracted prose into markdown formatting and ultimately into the agent’s output context; there is no LLM prompt-injection sanitization step shown.
- Repository
- jimliu/baoyu-skills
- Commit
ce84174
- Audited
- Security analysis
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.