tooluniverse-binder-discovery
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Analysis of the skill identifies an attack surface for indirect prompt injection.
- Ingestion points: The skill ingests large volumes of external data from numerous scientific APIs, including ChEMBL, PubChem, BindingDB, PubMed, BioRxiv, and MedRxiv, as outlined in SKILL.md and TOOLS_REFERENCE.md.
- Boundary markers: There are no documented delimiters or instructions to ignore potential commands embedded in data retrieved from these external sources.
- Capability inventory: The skill possesses capabilities for network operations (via integrated ToolUniverse APIs) and file system writes (generating discovery reports and CSV files such as [TARGET]_binder_discovery_report.md).
- Sanitization: The workflow does not specify sanitization, escaping, or validation protocols for data fetched from third-party biological databases before it is included in report generation.
Audit Metadata