arxiv-search
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill invokes a local Python script located at
.codex/skills/arxiv-search/scripts/run.pyto perform its core functions. This is expected behavior for this type of skill. - EXTERNAL_DOWNLOADS (SAFE): The skill performs network operations to fetch metadata from the official arXiv API. This activity is restricted to a reputable academic source and is essential for the skill's functionality.
- INDIRECT_PROMPT_INJECTION (LOW): The skill ingests paper metadata from external sources which could be manipulated by third parties.
- Ingestion points: arXiv API responses and user-provided local import files (CSV/JSON/JSONL).
- Boundary markers: None identified in the provided documentation to separate untrusted data from agent instructions.
- Capability inventory: Executes local Python code via the
run.pyscript for data normalization and output generation. - Sanitization: No specific sanitization or filtering logic for external content is mentioned in the skill definition.
Audit Metadata