ipynb-notebooks
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The documentation recommends 'jupyter nbconvert --execute' for automated reporting. This facilitates Remote Code Execution (RCE) if an agent is directed to process notebooks from untrusted or external sources. Evidence: references/presentation-patterns.md.
- [COMMAND_EXECUTION] (LOW): Python snippets in references/file-structure.md utilize 'os.chdir()' and 'sys.path.insert()' to manage the working directory and path. These operations can be used to load malicious local modules if the project directory is compromised.
- [EXTERNAL_DOWNLOADS] (LOW): The guides mention '%pip install' and 'uv add' for managing dependencies, which involves downloading and installing external code at runtime. Evidence: references/presentation-patterns.md and references/token-efficiency.md.
- [CREDENTIALS_UNSAFE] (SAFE): The skill includes a 'Sharing Checklist' in references/presentation-patterns.md that explicitly warns to clean secret information such as tokens, cookies, and account details before sharing, which is a positive security practice.
Audit Metadata