kb-meta-fetch
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes parameterized SQL queries through the psycopg2 library's execute_values method, which is a standard and effective defense against SQL injection.
- [EXTERNAL_DOWNLOADS]: It retrieves journal metadata from the official Crossref API (api.crossref.org), a well-known and trusted service in the academic community, for legitimate data ingestion purposes.
- [DATA_EXFILTRATION]: Sensitive database credentials and configuration details are accessed via environment variables (prefixed with KB_) rather than being hardcoded in the source code.
- [COMMAND_EXECUTION]: The script performs data retrieval and database operations using standard Python libraries (requests, pandas, sqlalchemy) and does not involve the execution of arbitrary or untrusted system commands.
Audit Metadata