Skills
skills/eturkes/claude-scientific-skills/imaging-data-commons/Gen Agent Trust Hub

imaging-data-commons

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill includes instructions to execute pip3 install via the Python subprocess module. This is used to ensure the idc-index package is updated to the required version for compatibility with the IDC data release (v23).
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the download of medical imaging data (DICOM) and metadata indices (Parquet files) from public Amazon S3 and Google Cloud Storage buckets managed by the Imaging Data Commons. These are well-known scientific repositories.
  • [PROMPT_INJECTION]: The skill processes untrusted metadata such as SeriesDescription and AnnotationGroupLabel retrieved from the IDC database. This data represents an indirect prompt injection surface; however, the risk is minimal given the specialized medical context and the intended research application.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 10:49 PM