notebook-debugger
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill directs the agent to execute shell commands and subprocesses to diagnose environment issues and manage packages. This includes using subprocess.run for package inspection and notebook magic commands like !pip install to resolve dependencies.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection when processing external notebook data. [Ingestion points]: Processes .ipynb files and environment configuration files like environment.yml or requirements.txt. [Boundary markers]: No explicit markers or directives to ignore instructions embedded within the notebook files are provided. [Capability inventory]: The skill includes environment modification, kernel management, and command execution capabilities. [Sanitization]: No sanitization or validation of content from the analyzed notebook or configuration files is defined.
- [EXTERNAL_DOWNLOADS]: The workflow suggests downloading and installing Python packages from standard registries to address identified environment conflicts and ensure reproducibility.
Audit Metadata