tooluniverse-chemical-compound-retrieval
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill contains no instructions designed to bypass agent constraints or safety filters. Instructional language is limited to task-specific translation and reporting workflows.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, API keys, or access to sensitive local file paths (e.g., .env, .ssh) were found. Network operations are restricted to the provided scientific database tools.
- Remote Code Execution (SAFE): There are no patterns involving the download or execution of external scripts (e.g., curl | bash) or unauthorized package installations.
- Indirect Prompt Injection (LOW): The skill ingests untrusted data in the form of compound names and SMILES strings from users. While this is an ingestion surface, the data is processed as parameters for structured scientific API calls rather than being interpolated into vulnerable prompt contexts that could lead to command execution.
Audit Metadata