h5py
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill references 'pip install h5py'. While this involves an external package download, h5py is a well-known, widely-used, and trusted scientific library. According to [TRUST-SCOPE-RULE], this finding is downgraded to LOW severity as it targets a standard repository.
- [DATA_EXFILTRATION] (SAFE): No patterns of unauthorized file system access or external network communication were identified.
- [PROMPT_INJECTION] (SAFE): The content is purely educational and does not contain instructions intended to override agent behavior or bypass safety filters.
- [COMMAND_EXECUTION] (SAFE): All included code snippets demonstrate standard, safe library usage for HDF5 file operations and do not involve arbitrary command execution.
Audit Metadata