Skills
NYC
skills/ovachiever/droid-tings/omero-integration/Gen Agent Trust Hub

omero-integration

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The skill installs the omero-py Python package. While it is the official library for the OMERO platform, it is not hosted in a repository from the specifically defined trusted organizations list.
  • [CREDENTIALS_UNSAFE] (SAFE): Documentation includes a section on credential security, advising users to use environment variables or configuration files rather than hardcoding credentials.
  • [PROMPT_INJECTION] (LOW): This skill possesses an attack surface for indirect prompt injection from data processed at runtime.
  • Ingestion points: Data enters the context via conn.listProjects(), conn.getObjects(), and annotation retrieval as described in references/connection.md.
  • Boundary markers: Delimiters or 'ignore instructions' warnings are not present in the provided templates.
  • Capability inventory: The skill uses the omero-py library which performs network operations and can modify metadata or annotations on the OMERO server.
  • Sanitization: No explicit sanitization or validation of strings retrieved from the OMERO server is shown in the connection examples.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:59 PM