Skills
skills/langchain-ai/deepagentsjs/arxiv-search/Gen Agent Trust Hub

arxiv-search

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEDATA_EXFILTRATION
Full Analysis
  • Data Exposure & Exfiltration (LOW): The script arxiv_search.ts performs network requests to export.arxiv.org using the fetch API. This domain is not included in the predefined whitelist of trusted infrastructure. Additionally, the request is made over unencrypted HTTP.
  • Indirect Prompt Injection (LOW): The skill processes untrusted data from an external source (arXiv API) which could contain malicious instructions designed to influence the behavior of the AI agent.
  • Ingestion points: The script fetches paper titles and summaries from http://export.arxiv.org/api/query in arxiv_search.ts.
  • Boundary markers: Absent. The data is returned as plain text without delimiters or instructions to the agent to treat the content as untrusted.
  • Capability inventory: The script itself only performs network reads (fetch), but it provides content to an agent that may possess more sensitive capabilities.
  • Sanitization: Absent. The script uses basic regex to extract XML content and does not perform any validation or sanitization on the retrieved strings.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:27 PM