Ai Social Media Content

The `SKILL.md` file contains instructions for installing the `inference.sh` CLI via `curl -fsSL https://cli.inference.sh | sh` and for adding related skills via `npx skills add ...`. These commands do not adhere to the `allowed-tools: Bash(infsh *)` directive specified for the AI agent. This creates a prompt injection vulnerability, as an attacker could potentially instruct the agent to execute these out-of-scope commands, bypassing the intended sandbox. Additionally, the skill includes a `twitter/post-tweet` command, which, while a stated feature, represents a high-impact capability that could be abused if the agent is compromised.