root-finding
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
Bashtool to execute Python code and custom scripts for mathematical computation, such as SciPy solvers and SymPy symbolic solvers. - [EXTERNAL_DOWNLOADS]: Dependencies such as
scipy,sympy, andz3-solverare utilized; these are typically sourced from the official Python Package Index (PyPI). - [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection where user-supplied equation strings are interpolated into command-line arguments for solver scripts. Ingestion points: Equation strings passed to
sympy_compute.pyandz3_solve.py. Boundary markers: Equations are enclosed in double quotes. Capability inventory:Bashtool usage is enabled. Sanitization: No explicit sanitization logic is displayed in the skill instructions.
Audit Metadata