data-analysis
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill is designed to ingest and analyze external datasets using tools such as Bash and Read, which is a core functional requirement but inherently presents a surface for indirect prompt injection. This is a common characteristic of data science skills and no evidence of malicious exploitation was found. * Ingestion points: Dataset loading procedures in workflows/analyze-dataset.md. * Boundary markers: Not explicitly specified in the instructions. * Capability inventory: Read, Bash, Write, Grep, and Glob tools are enabled to facilitate comprehensive data analysis. * Sanitization: Not explicitly defined in the skill instructions.
- [DYNAMIC_EXECUTION]: The skill facilitates the generation and execution of Python code for data processing and visualization using industry-standard libraries like pandas and matplotlib, which is the intended behavior.
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute legitimate commands for statistical analysis and data handling as part of its defined workflows.
Audit Metadata