tooluniverse-statistical-modeling
Pass
Audited by Gen Agent Trust Hub on May 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection through its data processing workflow.\n
- Ingestion points: Untrusted data enters the agent context via CSV loading commands (e.g.,
pd.read_csv('data.csv')) used throughoutSKILL.md,EXAMPLES.md, and multiple reference files in thereferences/directory.\n - Boundary markers: Absent. The skill does not instruct the agent to use delimiters or ignore embedded natural language instructions within the data files.\n
- Capability inventory: The agent is instructed to execute Python code via a Bash tool. The available libraries (
statsmodels,scipy,lifelines) and the underlying shell access provide a high-capability environment that could be abused if malicious instructions are successfully injected.\n - Sanitization: Absent. There is no mention of validating or escaping the contents of the CSV files before they are processed by the analytical scripts.
Audit Metadata