sc-eda
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes bash commands to run Python scripts for dataset analysis and report generation, which is central to its primary function.
- [EXTERNAL_DOWNLOADS]: It identifies standard data science dependencies including pandas, matplotlib, seaborn, and numpy that may be installed via pip; these are well-known and trusted packages.
- [PROMPT_INJECTION]: The skill processes external data files such as CSV, JSON, and Parquet, creating a surface for indirect prompt injection. This is a low-risk finding inherent to data analysis tasks and is addressed through the skill's specific analytical scope.
Audit Metadata