uniprot-database
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill's primary function is to query the UniProt Knowledgebase (UniProtKB), UniParc, and UniRef via official API endpoints.
- [DATA_EXFILTRATION]: The skill performs network requests to
rest.uniprot.organdsparql.uniprot.org. These are well-known, legitimate scientific service domains. No access to sensitive local files or unauthorized data transmission was found. - [COMMAND_EXECUTION]: The Python scripts use the
http_clientmodule from a local library to perform network operations. No usage ofos.system,subprocess,eval, or other dangerous command execution functions was detected. - [PROMPT_INJECTION]: The instructions do not contain attempts to bypass safety filters or override system prompts. It includes standard guidance for the agent to avoid hallucinations and adhere to tool outputs.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or credentials were found in the scripts or documentation.
- [INDIRECT_PROMPT_INJECTION]: While the skill processes external data from UniProt, it does not possess high-risk capabilities (like shell access or file system modification beyond a license log) that would make it a significant target for indirect injection attacks.
Audit Metadata