fluidsim
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill instructs users to install
fluidsimand related dependencies likefluidfftandmpi4pyfrom PyPI using theuvpackage manager.- [COMMAND_EXECUTION] (MEDIUM): The skill provides patterns for generating Python scripts at runtime and executing them usingmpirunor cluster-specific submission tools (e.g.,Calcul8). This dynamic script generation and subsequent system-level execution is a core functionality but poses a significant risk if simulation parameters are not strictly validated.- [PROMPT_INJECTION] (LOW): The skill identifies a surface for indirect prompt injection when loading data from external simulation directories or HDF5 files. Ingestion points: Functions likeload_sim_for_plotandh5py.Fileallow loading of external data. Boundary markers: None identified in the provided documentation. Capability inventory: Includes file-writing, system command execution (MPI), and cluster job submission. Sanitization: No sanitization or validation logic is presented for file paths or the contents of simulation files.
Audit Metadata