protocolsio-integration
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides comprehensive and legitimate documentation for the protocols.io scientific platform. All described API endpoints and workflows are consistent with official platform usage for research and laboratory management.\n- [SAFE]: Authentication procedures follow security best practices by utilizing OAuth 2.0 flows and Bearer tokens. The instructions include warnings to store credentials securely and avoid hardcoding tokens.\n- [PROMPT_INJECTION]: The skill facilitates the retrieval of scientific protocol data from an external source, creating a surface for indirect prompt injection findings.\n
- Ingestion points: Protocol content and publication metadata retrieved via GET requests to the protocols.io API (documented in protocols_api.md and additional_features.md).\n
- Boundary markers: The instructions do not explicitly require the agent to use delimiters or ignore embedded instructions when processing retrieved scientific data.\n
- Capability inventory: The skill enables the agent to create protocols, upload files to workspaces, and publish data with permanent DOIs.\n
- Sanitization: No specific validation or sanitization routines are provided for handling protocol steps or material descriptions retrieved from the API.
Audit Metadata