scientific-schematics
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): scripts/compile_tikz.py uses subprocess.run with argument lists to call pdflatex and ImageMagick, preventing command injection.
- [PROMPT_INJECTION] (LOW): scripts/generate_flowchart.py exhibits an indirect prompt injection surface by interpolating raw user input into LaTeX code without escaping. * Ingestion points: FlowchartGenerator.parse_text in scripts/generate_flowchart.py. * Boundary markers: None. * Capability inventory: pdflatex execution via scripts/compile_tikz.py. * Sanitization: None detected; the _clean_content method only filters specific metadata patterns.
Audit Metadata