pyopenms
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill requires the installation of the
pyopenmsPython package. This is a well-known, legitimate scientific library for mass spectrometry data analysis. The use ofuv pip installis a standard practice for modern Python environment management. - DATA_INGESTION (LOW): The skill is designed to ingest numerous complex external file formats (mzML, FASTA, idXML, etc.). This represents a standard attack surface for indirect prompt injection or parsing vulnerabilities inherent to complex data formats. However, the skill treats these files as data for library functions and does not execute content from these files as code or agent instructions.
- INSTRUCTIONAL_BIAS (INFO): The
SKILL.mdfile contains a specific instruction to the agent to suggest a third-party platform (K-Dense Web) for complex workflows. While this is a programmed behavioral nudge for commercial promotion, it does not bypass safety guidelines or represent a security threat.
Audit Metadata