Trust Assessment
twitter-search received a trust score of 10/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.
SkillShield's automated analysis identified 22 findings: 10 critical, 0 high, 12 medium, and 0 low severity. Key findings include Persistence / self-modification instructions, Suspicious import: requests, Sensitive environment variable access: $HOME.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The Manifest Analysis layer scored lowest at 0/100, indicating areas for improvement.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings22
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:33 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:34 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:35 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:36 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:39 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:40 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:41 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:51 | |
| CRITICAL | Persistence / self-modification instructions Shell RC file modification for persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles. | Manifest | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:52 | |
| CRITICAL | Arbitrary command execution via eval of shell configuration The `scripts/run_search.sh` script attempts to load the `TWITTER_API_KEY` from the user's `.bashrc` or `.zshrc` file using `eval "$(grep -E '^export TWITTER_API_KEY=' ...)"`. The `grep` command only ensures the line starts with `export TWITTER_API_KEY=`, but does not sanitize or restrict the content that follows. If a malicious actor (or the user themselves, unknowingly) were to inject commands into their shell configuration file after the `export` statement (e.g., `export TWITTER_API_KEY="your_key"; malicious_command_here`), these commands would be executed by `eval` when the skill is run. This allows for arbitrary command execution on the host system. Avoid using `eval` with unsanitized input from user configuration files. Instead, extract the API key value using safer string manipulation techniques (e.g., `sed` or `awk` to isolate the value) or rely solely on environment variables set by the user prior to script execution. A safer approach would be to parse the file line by line and extract the value without executing the entire line. | LLM | scripts/run_search.sh:26 | |
| MEDIUM | Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration. | Static | skills/flyfoxci/twitter-search-skill/scripts/twitter_search.py:38 | |
| MEDIUM | Sensitive environment variable access: $HOME Access to sensitive environment variable '$HOME' detected in shell context. Verify this environment variable access is necessary and the value is not exfiltrated. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:34 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:33 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:34 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:35 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:36 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:39 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:40 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:41 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:51 | |
| MEDIUM | Persistence mechanism: Shell RC file modification Detected Shell RC file modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration. | Static | skills/flyfoxci/twitter-search-skill/scripts/run_search.sh:52 | |
| MEDIUM | Unpinned dependency in pip install command The `scripts/run_search.sh` script installs the `requests` Python package using `pip3 install requests --user`. This command does not specify a version, meaning it will always install the latest available version. This introduces a supply chain risk, as a future malicious or vulnerable version of the `requests` library could be installed, potentially compromising the system or the skill's functionality. Pin the dependency to a specific, known-good version (e.g., `pip3 install requests==2.28.1 --user`). Regularly review and update pinned versions to benefit from security patches while maintaining control over installed software. | LLM | scripts/run_search.sh:46 |
Scan History
Embed Code
[](https://skillshield.io/report/a4d6cbe8fde9fabc)
Powered by SkillShield