Skills
skills/dougtrajano/pydantic-ai-skills/arxiv-search/Gen Agent Trust Hub

arxiv-search

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
  • [Data Exposure & Exfiltration] (LOW): The script performs network requests to arxiv.org (via the arxiv library) to fetch paper data. This domain is not on the standard whitelist of trusted domains, though it is a reputable source for scientific research.
  • [Indirect Prompt Injection] (LOW): The skill ingests untrusted data from an external source (arXiv paper abstracts). While this content could theoretically contain malicious instructions for the agent, the skill itself has no dangerous capabilities that could be exploited.
  • Ingestion points: paper.title and paper.summary in scripts/arxiv_search.py.
  • Boundary markers: Absent; the content is presented as plain text without delimiters.
  • Capability inventory: The script is limited to network reads and printing to stdout; it has no file-system access or command-execution privileges.
  • Sanitization: None performed on the fetched strings.
  • [Unverifiable Dependencies] (LOW): The skill depends on the arxiv Python package. While this is a standard and well-known library for this purpose, the skill does not pin a specific version or provide a requirements file, which is a minor security best-practice violation.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:12 PM