The Agent Skills Directory

EXTERNAL_DOWNLOADS (MEDIUM): The skill executes install.packages('BiocManager') and BiocManager::install() to download DESeq2 and apeglm. These R repositories (CRAN and Bioconductor) are external and not included in the 'Trusted External Sources' whitelist, making these unpinned downloads unverified.- REMOTE_CODE_EXECUTION (MEDIUM): Runtime installation and loading of R packages allows for the execution of code from external sources. The absence of version locking or hash verification increases the risk of supply chain attacks.- DATA_EXFILTRATION (LOW): The skill uses write.csv to save results to the local filesystem. While this is standard for the tool's purpose, it represents a capability to write data that could be redirected to sensitive paths if the filenames were manipulated.- INDIRECT_PROMPT_INJECTION (LOW): The skill processes external data that could serve as an attack surface.
Ingestion points: Untrusted data enters via the countData matrix, colData metadata frame, and external files loaded via tximport.
Boundary markers: None. The data is processed directly as R objects.
Capability inventory: The skill has file-writing capabilities (write.csv).
Sanitization: There is no evidence of sanitization for metadata strings (e.g., column names in coldata) which are often interpolated into design formulas.

bio-de-deseq2-basics