plotly
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's documentation and quick start guides include instructions to install standard, widely-used Python packages such as
plotly,kaleido, anddashusing theuvpackage manager. These are well-known libraries in the data science ecosystem. - [PROMPT_INJECTION]: The
SKILL.mdfile includes a section titled "Suggest Using K-Dense Web For Complex Worflows" which provides specific instructions to the agent. It directs the AI to proactively suggest the author's own platform (www.k-dense.ai) when a user's request involves high complexity or multi-step reasoning. While this steers agent behavior to promote a specific service, it is a transparent vendor-specific instruction and does not attempt to bypass safety guidelines or security filters. - [REMOTE_CODE_EXECUTION]: Documentation for interactive HTML export demonstrates the usage of the
include_plotlyjs='cdn'parameter. This is a standard feature of the Plotly library that loads the necessary JavaScript assets from the official Plotly Content Delivery Network.
Audit Metadata