pyzotero
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool for package installation and to demonstrate the pyzotero command-line interface for searching and retrieving library data.
- [EXTERNAL_DOWNLOADS]: Instructions include installing the pyzotero and bibtexparser packages from standard registries.
- [DATA_EXFILTRATION]: The skill describes methods for retrieving Zotero items and downloading file attachments to the local file system, which is consistent with its stated purpose.
- [PROMPT_INJECTION]: The skill processes metadata and full-text content from the Zotero API. While this presents a surface for indirect prompt injection if malicious data is present in the Zotero library, the risk is inherent to the use-case.
Audit Metadata