paper-orchestra

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the host agent to run several local Python scripts for workspace initialization and input validation, as well as LaTeX tools like pdflatex and latexmk for manuscript compilation. These operations are core to the skill's function.
  • [EXTERNAL_DOWNLOADS]: The literature review agent within the pipeline fetches academic paper metadata from the Semantic Scholar API (api.semanticscholar.org). This is a well-known academic service used for its intended purpose of citation verification.
  • [SAFE]: The skill implements proactive safety measures, including an 'Anti-Leakage' prompt to prevent the AI from hallucinating or leaking training data, and a deterministic check (anti_leakage_check.py) to ensure anonymity and privacy in generated drafts.
  • [SAFE]: Environment probing for LaTeX packages (check_tex_packages.py) and local PDF generation via the reportlab library follow standard development practices for productivity tools.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 04:53 AM
Security Audit — agent-trust-hub — paper-orchestra