tooluniverse-image-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits vulnerability to indirect prompt injection by design as it is intended to ingest and analyze external data.
- Ingestion points: The skill processes untrusted data from CSV, TSV, and microscopy image files (e.g., TIFF, PNG) discovered in the workspace (SKILL.md).
- Boundary markers: There are no explicit boundary markers or instructions to ignore potential natural language commands embedded within the data files during the loading or analysis phases.
- Capability inventory: The skill possesses capabilities for data processing, statistical modeling (ANOVA, Dunnett's, regression), and image segmentation using scientific libraries. It does not appear to have network or arbitrary command execution capabilities.
- Sanitization: There is no mention of sanitizing or validating the content of the measurement tables or image metadata before it is used to drive analysis logic.
Audit Metadata