pdb-database
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill downloads biological structure files (.pdb, .cif) from the legitimate RCSB PDB domain (files.rcsb.org). While standard for this use case, it involves retrieving and saving external content to the local filesystem.
- [COMMAND_EXECUTION] (LOW): The skill requires the installation of the 'rcsb-api' and 'biopython' packages and performs local file write operations to store downloaded structure data.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection if an attacker-controlled structure entry contains malicious instructions within metadata fields (e.g., structure titles or descriptions) that the agent later processes.
- Evidence Chain for Category 8:
- Ingestion points: Data is fetched via 'rcsbapi.data.fetch' and files are downloaded using 'requests.get' from 'files.rcsb.org'.
- Boundary markers: Absent; the skill does not use specific delimiters or warnings to ignore embedded instructions in the fetched data.
- Capability inventory: The skill possesses network access, file writing ('open'), and data parsing capabilities via 'Bio.PDB.PDBParser'.
- Sanitization: Absent; the skill does not filter or sanitize retrieved metadata before it is processed by the agent.
Audit Metadata