survey-paper
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill successfully implements its stated logic for academic paper processing via a well-known service (Arxiv).
- [COMMAND_EXECUTION]: The skill employs authorized tools (
arxiv-mcp-server) to retrieve research content, which is the intended behavior. - [DATA_EXFILTRATION]: Output is directed to a local directory (
/Users/iamseungpil/LSP/study/Study/01_Papers/Survey/). As this path matches the author's context and represents the intended local storage for the notes, it is considered safe. - [PROMPT_INJECTION]: Analysis identifies an indirect prompt injection surface due to the processing of external research papers.
- Ingestion points: Research paper text fetched via the
read_papertool. - Boundary markers: Absent; no specific instructions are provided to distinguish external paper content from the agent's instructions.
- Capability inventory: The agent has the capability to write files to the local file system.
- Sanitization: No sanitization of the external paper content is implemented before interpolation into the final survey note templates.
Audit Metadata