csv-analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill uses established and trusted libraries such as pandas, matplotlib, and seaborn to perform data analysis and visualization. All processing is done locally on the user's data.\n- [COMMAND_EXECUTION]: The skill executes a local Python script for data processing. The script uses safe data handling practices and does not invoke shell commands or evaluate dynamic code.\n- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface because it processes external CSV data and includes it in generated reports without sanitization.\n
- Ingestion points: CSV data is ingested using
pandas.read_csv()inscripts/analyze_csv.py.\n - Boundary markers: Absent; the analysis results are interpolated directly into Markdown and HTML reports.\n
- Capability inventory: The script reads CSV files and writes visualization images and reports to the local filesystem.\n
- Sanitization: Absent; data values from the columns are incorporated into the report strings without escaping or validation.
Audit Metadata