tooluniverse-statistical-modeling

Pass

Audited by Gen Agent Trust Hub on May 27, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection through its data processing workflow.\n
  • Ingestion points: Untrusted data enters the agent context via CSV loading commands (e.g., pd.read_csv('data.csv')) used throughout SKILL.md, EXAMPLES.md, and multiple reference files in the references/ directory.\n
  • Boundary markers: Absent. The skill does not instruct the agent to use delimiters or ignore embedded natural language instructions within the data files.\n
  • Capability inventory: The agent is instructed to execute Python code via a Bash tool. The available libraries (statsmodels, scipy, lifelines) and the underlying shell access provide a high-capability environment that could be abused if malicious instructions are successfully injected.\n
  • Sanitization: Absent. There is no mention of validating or escaping the contents of the CSV files before they are processed by the analytical scripts.
Audit Metadata
Risk Level
SAFE
Analyzed
May 27, 2026, 07:11 AM
Security Audit — agent-trust-hub — tooluniverse-statistical-modeling