Skills
skills/pluginagentmarketplace/custom-plugin-data-engineer/python-programming/Gen Agent Trust Hub

python-programming

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGH
Full Analysis
  • [SAFE] (SAFE): No actual security vulnerabilities were identified in the analyzed files. The codebase consists of configuration, documentation, and a validation utility.
  • [EXTERNAL_DOWNLOADS] (SAFE): No external downloads or remote script executions occur. The only non-standard dependency is PyYAML, used safely in the validation script.
  • [REMOTE_CODE_EXECUTION] (SAFE): The skill correctly uses yaml.safe_load() in scripts/validate.py and recommends it in references/PATTERNS.md, preventing unsafe deserialization vulnerabilities.
  • [DATA_EXFILTRATION] (SAFE): The skill does not contain network-capable code or access to sensitive local file paths like SSH keys or environment secrets.
  • [PROMPT_INJECTION] (SAFE): No instructions designed to override AI safety constraints or extract system prompts were found in the documentation or code comments.
Recommendations
  • Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 12:40 AM