deepchem
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [DYNAMIC_EXECUTION] (SAFE): The script
graph_neural_network.pyusesgetattrto dynamically select dataset loading functions. This implementation is secure as the input is strictly validated against a hardcoded whitelist of allowed datasets via theargparsechoices constraint. - [EXTERNAL_DOWNLOADS] (SAFE): The scripts utilize the
deepchemlibrary which downloads benchmark datasets (MoleculeNet) from trusted scientific repositories. This is standard behavior for the intended use case. - [INDIRECT_PROMPT_INJECTION] (LOW): As the scripts ingest external data (CSV files and SMILES strings), they represent an indirect injection surface if an agent processes untrusted user-provided files. However, the scripts themselves do not contain vulnerabilities.
Audit Metadata