arxiv-research
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches research paper metadata and abstracts from the official arXiv Atom API. This is a well-known academic service used for its intended purpose of research compilation.
- [DATA_EXFILTRATION]: Filesystem access is confined to the vendor-specific directory
~/.aibtc/arxiv-research/for caching and storing generated reports. No sensitive user credentials or configuration files are accessed. - [PROMPT_INJECTION]: The skill ingests untrusted content from arXiv (paper titles and abstracts) to generate digests. While this introduces a potential surface for indirect prompt injection if an LLM later processes the digests, the skill itself performs no instruction execution and acts only as a formatting tool.
- Ingestion points:
arxiv-research/arxiv-research.ts(viafetchto arXiv API) - Boundary markers: Absent; uses standard Markdown headers and blocks to separate content.
- Capability inventory: File system write access (
Bun.write) to specific local paths and network read access (fetch) from the arXiv domain. - Sanitization: Truncates long abstracts and normalizes whitespace, but does not perform content-based instruction filtering.
Audit Metadata