tax-calendar-proactive
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run a bundled script (
scripts/tax_calc.py) to perform tax calculations. This is an intended functionality that ensures mathematical accuracy by using the local runtime environment rather than relying on the LLM's arithmetic capabilities. - [SAFE]: The skill references several authoritative external domains for Russian tax law and accounting (e.g., consultant.ru, garant.ru, kontur.ru). These are well-known technology and legal services in the region used appropriately for documentation and verification.
- [COMMAND_EXECUTION]: The skill processes untrusted data from user inputs or bank CSV exports. The ingestion is handled safely as the calculation script (
scripts/tax_calc.py) uses Python'sargparselibrary and type-casts inputs to numerical values (float/int), which effectively mitigates command injection risks during data processing.
Audit Metadata