tooluniverse-systems-biology
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes data from external biological databases (e.g., WikiPathways, KEGG) and integrates it into generated Markdown reports. This constitutes an indirect prompt injection surface where malicious data stored in an external database could attempt to influence the agent's behavior when it reads the report back into its context.
- Ingestion points: Data retrieved via tools like
WikiPathways_search,kegg_search_pathway, andpc_search_pathwaysinpython_implementation.py. - Boundary markers: External tool output is directly concatenated into the report files without the use of explicit delimiters or instructions for the agent to ignore embedded commands.
- Capability inventory: The skill has the capability to write files to the system and execute a variety of biological analysis tools.
- Sanitization: The implementation does not perform sanitization, filtering, or validation of text content retrieved from the external APIs before writing it to the output Markdown files.
Audit Metadata