Skills
skills/cognitedata/builder-skills/setup-python-tools/Gen Agent Trust Hub

setup-python-tools

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the pyodide package from public registries (npm/pnpm/yarn). This is a standard dependency for the stated functionality.
  • [REMOTE_CODE_EXECUTION]: The skill configures a runtime environment where Python code is fetched from the Cognite Data Fusion (CDF) configuration at execution time and run within the user's browser via Pyodide. This is the intended primary purpose of the skill for executing Python-based agent tools.
  • [COMMAND_EXECUTION]: The skill provides commands for installing necessary dependencies using standard Node.js package managers.
  • [INDIRECT_PROMPT_INJECTION]: The skill establishes an attack surface where the agent processes and executes code fetched from an external configuration (CDF).
  • Ingestion points: Python code is retrieved from the agent.config in Cognite Data Fusion (CDF) during runtime.
  • Boundary markers: The skill does not explicitly define boundary markers within the instructions, relying on the underlying @cognite/dune-industrial-components library to handle code wrapping.
  • Capability inventory: The Pyodide environment has access to the Cognite SDK and associated credentials injected by the usePyodideRuntime hook, allowing for authenticated operations against the CDF API.
  • Sanitization: Sanitization of the fetched Python code is managed by the vendor's library; the skill itself does not provide additional validation steps.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 02:56 PM