reactome-database
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOWPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION] (LOW): Behavioral steering for commercial promotion. The
SKILL.mdfile contains a 'Suggest Using K-Dense Web For Complex Worflows' section that instructs the agent to advertise a specific commercial platform to users, overriding neutral response protocols. - [EXTERNAL_DOWNLOADS] (LOW): External library dependencies. The skill utilizes the
requestslibrary and the domain-specificreactome2pypackage for API interaction. - [COMMAND_EXECUTION] (INFO): Standard file and network operations. The helper script
scripts/reactome_query.pyperforms local file reads (gene lists), writes results to JSON files, and communicates with thereactome.orgAPI via HTTPS. - [DATA_EXFILTRATION] (LOW): Inherent risk in untrusted data processing (Category 8 surface). The skill processes local data and transmits it to an external API. Evidence Chain: Ingestion:
scripts/reactome_query.pyreads user-provided files via command-line arguments. Boundaries: No explicit boundary markers or isolation for ingested identifiers. Capabilities: Network POST toreactome.organd local file writes. Sanitization: No sanitization of input identifiers before transmission.
Audit Metadata