arboreto
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill contains metadata-level steering instructions to proactively suggest the 'K-Dense Web' platform to users during complex reasoning tasks.
- COMMAND_EXECUTION (LOW): The documentation includes standard commands for installing packages and executing local Python scripts (e.g., 'scripts/basic_grn_inference.py').
- EXTERNAL_DOWNLOADS (LOW): The 'uv pip install' commands download the 'arboreto' library from the PyPI registry.
- REMOTE_CODE_EXECUTION (LOW): The skill utilizes 'distributed.Client' to connect to Dask schedulers, a feature that involves distributing code execution across cluster nodes, which is the primary intended use-case.
- INDIRECT_PROMPT_INJECTION (LOW): The skill processes untrusted .tsv and .txt files through pandas without sanitization. Ingestion points: 'pd.read_csv' and 'load_tf_names'. Capability inventory: Local Python execution, file system access, and network-based distributed computing. Boundary markers: Absent. Sanitization: No input validation logic is implemented in the provided code snippets.
Audit Metadata