Skills
skills/jaechang-hits/sciagent-skills/gnomad-database/Gen Agent Trust Hub

gnomad-database

Pass

Audited by Gen Agent Trust Hub on Mar 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches genomic data from the Broad Institute's official gnomAD API (gnomad.broadinstitute.org), which is a well-known and trusted scientific resource.
  • [COMMAND_EXECUTION]: Requires installation of standard data science libraries (requests, pandas, matplotlib) via pip.
  • [PROMPT_INJECTION]: Potential surface for indirect prompt injection via user-supplied genomic identifiers.
  • Ingestion points: Gene symbols and variant IDs provided at runtime in SKILL.md.
  • Boundary markers: Absent from query templates.
  • Capability inventory: Performs network requests to gnomad.broadinstitute.org and writes output to the local filesystem (CSV and PNG).
  • Sanitization: Uses structured GraphQL variables to prevent structural query injection, though it does not fully prevent logic manipulation from crafted inputs.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 16, 2026, 02:32 AM