imaging-data-commons
Fail
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: HIGHCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The 'SKILL.md' file includes a Python code block intended for immediate execution by the agent that uses the 'subprocess' module to run shell commands. It specifically executes 'pip3 install --upgrade --break-system-packages idc-index', which modifies the underlying system's Python environment and uses a flag designed to override OS-level environment protections.
- [REMOTE_CODE_EXECUTION]: The skill's workflow involves the runtime installation of the 'idc-index' package and other dependencies from the public PyPI registry. This pattern introduces external, third-party code into the agent's execution context at runtime.
- [EXTERNAL_DOWNLOADS]: The skill is designed to download large-scale medical imaging datasets from public AWS S3 and Google Cloud Storage buckets (e.g., 'idc-open-data') managed by the Imaging Data Commons. It also accesses various remote metadata indices and documentation sources.
Recommendations
- AI detected serious security threats
Audit Metadata