esm
Warn
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Connects to EvolutionaryScale's official Forge API and HuggingFace repositories to download model weights and perform remote inference tasks. This is standard functionality for the protein modeling domain and uses trusted endpoints.\n- [COMMAND_EXECUTION]: Implements local data persistence for caching embeddings and batch processing checkpoints using the
picklemodule.\n - Evidence: Found in
references/esm-c-api.md(EmbeddingCache class) andreferences/forge-api.md(CheckpointedBatchProcessor class).\n - Risk: The usage of
pickle.load()on files such asembeddings_cache.pklandcheckpoint.pklis inherently insecure. While these files are generated locally, any compromise of the local environment that allows an attacker to replace them could lead to arbitrary code execution when the agent deserializes the malicious data.
Audit Metadata