deep-research
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes shell commands to facilitate its research workflow, including calling the
search-clitool for multi-provider web search, executingpythonscripts for report validation, and runningpnpm run sync:researchto publish generated reports to a local project directory. These commands are integral to the skill's primary functionality. - [PROMPT_INJECTION]: As the skill ingests and processes large amounts of untrusted data from the web, it possesses an inherent surface for indirect prompt injection. This is addressed in the
reference/quality-gates.mdfile, which establishes a 'Source trust boundary' instructing the agent to treat external content strictly as data and never as instructions, significantly mitigating the risk. - [EXTERNAL_DOWNLOADS]: The skill relies on external utilities for its operation, specifically
search-cliandweasyprint. These tools are used for their intended purposes (search and PDF conversion) and are clearly identified in the installation documentation.
Audit Metadata