Checking ChEMBL for Structured SAR Data
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill performs network requests to
www.ebi.ac.ukto access the ChEMBL database. This is a well-known scientific service provided by the European Bioinformatics Institute.- [COMMAND_EXECUTION]: The skill executes shell commands usingcurlandjqto fetch and parse JSON data. It also includes instructions to generate and run a Python helper script (check_chembl.py) for automated DOI validation.- [DATA_EXFILTRATION]: Extracted bioactivity data and document IDs are recorded in local project files, specificallySUMMARY.mdandpapers-reviewed.json. No sensitive information is sent to unauthorized external domains.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted data from an external API. - Ingestion points: JSON responses from the ChEMBL API ingested during workflow steps in
SKILL.md. - Boundary markers: Absent; no instructions are provided to the agent to treat external content as untrusted.
- Capability inventory: Shell execution via
curlandpython3, and file system write access for tracking files. - Sanitization: Structural parsing is performed using
jqandjson.json(), but no natural language sanitization is applied to the retrieved content.
Audit Metadata