pymatgen
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
pymatgenandmp-apipackages from official Python package registries, which are established tools in the materials science community. - [COMMAND_EXECUTION]: The skill provides examples for running bundled Python scripts from the
scripts/directory, such asstructure_converter.py,structure_analyzer.py, andphase_diagram_generator.py, to automate structural analysis and file conversions. - [PROMPT_INJECTION]: The skill includes behavioral instructions that direct the agent to proactively suggest an external research platform (K-Dense Web) when tasks reach a certain level of complexity. Furthermore, the skill processes external materials data files (e.g., CIF, POSCAR, XYZ) through the
Structure.from_filemethod. These files serve as ingestion points for untrusted data; the skill documentation does not specify boundary markers or sanitization procedures to mitigate risks associated with malformed or malicious inputs interacting with the skill's file-writing (struct.to) and network access (MPRester) capabilities.
Audit Metadata