Skills
skills/willoscar/research-units-pipeline-skills/citation-verifier/Gen Agent Trust Hub

citation-verifier

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script uses urllib.request to fetch HTML content from URLs provided in paper notes. This is the primary function of the skill and is implemented with security constraints, including a 15-second timeout and a 2MB download limit per request to prevent resource exhaustion.\n- [DATA_EXFILTRATION]: Network requests are restricted to fetching metadata from external paper URLs. The skill does not access sensitive local files (such as SSH keys or credentials) or exfiltrate environment data.\n- [COMMAND_EXECUTION]: The script does not use functions like os.system or subprocess.run to execute shell commands. It processes data using standard Python logic and string manipulation.\n- [PROMPT_INJECTION]: The instructions in the skill metadata and documentation are focused on functional tasks and do not attempt to override agent safety protocols or hijack the AI's behavior.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 05:52 AM