skills/jeremylongshore/claude-code-plugins-plus-skills/preprocessing-data-with-automated-pipelines/Gen Agent Trust Hub
preprocessing-data-with-automated-pipelines
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices and does not exhibit any malicious behaviors.
- [COMMAND_EXECUTION]: The orchestration script
scripts/pipeline.pyexecutes local Python scripts (validate_data.py,transform_data.py,handle_errors.py) usingsubprocess.run(). This is a legitimate functional requirement. The implementation is secure because it passes the command as an argument list and does not useshell=True, which effectively mitigates shell injection risks. - [DYNAMIC_EXECUTION]: According to the instructions in
SKILL.md, the agent is expected to generate and execute Python code for custom data transformations. While this involves runtime execution, it is the primary purpose of the skill and occurs within the agent's controlled environment. - [INDIRECT_PROMPT_INJECTION]: The skill possesses a data ingestion surface that could theoretically be exploited by malicious content within processed files.
- Ingestion points:
assets/example_data.csvand any user-provided CSV/JSON files. - Boundary markers: None explicitly defined in the instructions to prevent the agent from following instructions embedded in the data.
- Capability inventory:
scripts/pipeline.pyusessubprocess.runto execute Python scripts; the agent itself has broad tool access viaallowed-tools. - Sanitization: The scripts use standard, safe parsers (
csv.DictReader,json.load) which do not evaluate content as code. The risk is limited to the agent's interpretation of the data during analysis.
Audit Metadata