bio-population-genetics-scikit-allel-analysis
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill processes external VCF files, which constitutes a data ingestion surface. The risk is evaluated as safe because the skill lacks high-risk capabilities (like arbitrary command execution or network access) and utilizes a structured file parser.
- Ingestion points: Usage of allel.read_vcf in SKILL.md and examples/basic_analysis.py.
- Boundary markers: None present in code, which is expected for analytical scripts.
- Capability inventory: Limited to numerical processing with numpy and visualization with matplotlib.
- Sanitization: Relies on the structured parsing logic of the scikit-allel library.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill installs 'scikit-allel' and 'zarr' via pip. These are well-established packages in the bioinformatics community from the standard PyPI registry. No execution of untrusted remote scripts was found.
Audit Metadata