Skills
skills/willoscar/research-units-pipeline-skills/survey-seed-harvest/Gen Agent Trust Hub

survey-seed-harvest

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • SAFE (SAFE): No malicious patterns or security threats were detected. The script implements a keyword-based heuristic to organize paper titles into a taxonomy structure.
  • Indirect Prompt Injection (LOW): The skill processes untrusted paper metadata (titles and abstracts) which could theoretically contain malicious instructions.
  • Ingestion points: papers/papers_dedup.jsonl via the read_jsonl function.
  • Boundary markers: None implemented for the input data or output YAML.
  • Capability inventory: File system write access via dump_yaml to outline/taxonomy.yml.
  • Sanitization: The _pretty function performs basic formatting (capitalization and character replacement), but does not specifically sanitize for prompt injection. Given that the script uses algorithmic tokenization rather than an LLM to process this data, the risk of immediate exploitation is negligible.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:07 PM