conf-papers
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves academic paper metadata and abstracts from
dblp.organdapi.semanticscholar.org. These are recognized well-known academic services. - [COMMAND_EXECUTION]: The skill runs Python scripts for local file indexing and paper searching. It implements cross-skill code reuse by dynamically importing modules from a sibling directory (
start-my-day) and orchestrates other agent skills for deeper analysis. - [PROMPT_INJECTION]: There is an inherent risk of indirect prompt injection due to the processing of external paper descriptions. 1. Ingestion points: Untrusted paper titles and abstracts are ingested from the DBLP and Semantic Scholar APIs. 2. Boundary markers: There are no explicit delimiters or safety instructions provided to the agent to treat the retrieved text as untrusted content. 3. Capability inventory: The skill possesses the ability to write files to the local Obsidian vault and execute command-line scripts. 4. Sanitization: No validation or sanitization is performed on the retrieved text before it is summarized by the agent.
Audit Metadata