parallel-deep-research
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or security risks were detected in the skill instructions or shell snippets.
- [COMMAND_EXECUTION]: The skill uses standard shell utilities including curl, grep, and cut to manage API interaction and parse status responses. These operations are restricted to the primary research task.
- [EXTERNAL_DOWNLOADS]: The skill communicates with api.parallel.ai, which is the official endpoint for the Parallel AI service and is treated as a vendor-owned resource.
- [PROMPT_INJECTION]: The skill processes data from the Parallel AI research API, which represents a surface for indirect prompt injection. However, the data is only used for display and does not influence local command execution. 1. Ingestion points: API responses are captured in the RESULT variable within the polling loop. 2. Boundary markers: No delimiters are used for the external content. 3. Capability inventory: The skill is limited to shell-based API calls and status output; no local file writes or dynamic execution occurs based on API data. 4. Sanitization: None.
Audit Metadata