get-research-paper
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious code or exfiltration patterns were found. The skill operates strictly within its declared scope of academic research discovery and curation.
- [EXTERNAL_DOWNLOADS]: The skill connects to reputable academic domains such as arXiv.org, Google Scholar, PubMed, and Semantic Scholar to retrieve research metadata and abstracts. These connections are essential for the skill's primary function and target well-known, trusted academic infrastructure.
- [COMMAND_EXECUTION]: Uses
python3to execute the bundledtoolchains/arxiv_search.pyscript. This script provides a structured interface to the arXiv API, implements polite rate-limiting according to the source's policy, and uses standard libraries for parsing XML and handling HTTP requests. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it processes untrusted research abstracts from external sources.
- Ingestion points: Research abstracts are fetched from external APIs as described in
sources/arxiv.md,sources/semantic-scholar.md, andsources/pubmed.md. - Boundary markers: Absent. While
prompts/summarization.mdinstructs the model to "Stay strictly inside the abstract," there are no explicit delimiters or instructions to ignore embedded commands within the fetched text. - Capability inventory:
manifest.jsonandinstructions/core.mdindicate the skill hasfilesystem-writeandshell-execcapabilities. - Sanitization: Absent. External text from abstracts is interpolated directly into the summarization prompts without escaping or validation.
Audit Metadata