pymatgen
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis
- Data Exposure & Exfiltration (LOW): The script 'scripts/phase_diagram_generator.py' connects to the Materials Project API (next-gen.materialsproject.org) to fetch material entries. While this is intended functionality, it constitutes an external network dependency.
- Indirect Prompt Injection (LOW): The 'structure_analyzer.py' and 'structure_converter.py' scripts ingest untrusted structural data files. 1. Ingestion points: 'args.structure_file' in structure_analyzer.py and 'args.input' in structure_converter.py. 2. Boundary markers: None identified. 3. Capability inventory: File system read/write, network access via MPRester. 4. Sanitization: Pymatgen performs strict validation on chemical formulas and crystal structures, which limits the potential for adversarial content to influence the agent's logic, though the files themselves are external inputs.
Audit Metadata