results-analysis
Warn
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: MEDIUMPROMPT_INJECTIONREMOTE_CODE_EXECUTIONNO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of Markdown files providing guidelines and examples; it contains no scripts, binaries, or configuration files that execute logic.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it directs the agent to ingest external data (CSV, JSON, logs) without specifying security measures. 1. Ingestion points: Data loading steps defined in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Data processing and report generation described in USAGE.md. 4. Sanitization: Absent.
- [REMOTE_CODE_EXECUTION]: The documentation in SKILL.md lists Python pickle as a supported format for complex objects. Because pickle deserialization can execute arbitrary code, recommending its use for untrusted experimental results constitutes a significant security risk.
Audit Metadata