pandas-data-manipulation-rules
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The SKILL.md file directs the agent to execute a shell command
cat .claude/context/memory/learnings.mdto retrieve stored learnings. This is a restricted, non-privileged read operation for state management. - [PROMPT_INJECTION]: The skill is designed to process and review Python source files, which exposes an indirect prompt injection surface where instructions hidden in code comments could potentially influence agent behavior.
- Ingestion points: Python files ingested via the
**/*.pyglob. - Boundary markers: The instructions lack specific delimiters or warnings to ignore instructions embedded within the source code being analyzed.
- Capability inventory: The skill has access to
Read,Write, andEdittools. - Sanitization: No validation or sanitization is performed on the content of the ingested files before processing.
Audit Metadata