pylabrobot
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references the legitimate Python package 'pylabrobot' on PyPI. While it suggests installation via pip, this is the standard and intended way to use the library.
- [COMMAND_EXECUTION] (SAFE): The skill contains Python code snippets for controlling laboratory hardware. These operations are consistent with the skill's stated purpose of laboratory automation and do not show signs of malicious command injection.
- [DATA_EXFILTRATION] (SAFE): No sensitive file paths or hardcoded credentials were detected. Network references are limited to official documentation, community forums, and code repositories.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill mentions loading deck layouts and states from JSON files. While this represents a data ingestion surface where a malicious JSON could potentially influence behavior, the risk is inherent to the functional requirement of state management in lab automation. Standard sanitization is expected in the underlying library.
Audit Metadata