tooluniverse-drug-target-validation
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill incorporates an indirect prompt injection surface by retrieving and summarizing information from external scientific databases and literature. An attacker who can influence data in these sources (e.g., through published articles or curated database entries) could potentially affect the agent's summary or the quantitative validation score.
- Ingestion points: Untrusted external data enters the agent context via multiple tool calls described in
SKILL.mdandTOOL_REFERENCE.md, includingPubMed_search_articles,OpenTargets_target_disease_evidence, andChEMBL_get_target_activities. - Boundary markers: The instructions do not mandate the use of delimiters or specific prompting techniques to ensure the agent ignores instructions potentially embedded in the fetched biological or clinical data.
- Capability inventory: The skill facilitates the creation and population of local report files (e.g.,
[TARGET]_[DISEASE]_validation_report.md). - Sanitization: There is no evidence of sanitization or rigorous validation of the data retrieved from external APIs before it is used to generate the validation report and calculate the Target Validation Score.
Audit Metadata