geopandas
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install established Python libraries including geopandas, folium, and cartopy from official registries.
- [EXTERNAL_DOWNLOADS]: Code examples demonstrate fetching data from remote locations, such as generic URLs and cloud storage providers.
- [COMMAND_EXECUTION]: Provides standard command-line instructions for installing library dependencies using the uv tool.
- [PROMPT_INJECTION]: The skill facilitates the processing of data from untrusted external sources, creating a potential surface for indirect prompt injection.
- Ingestion points: Operations such as gpd.read_file() for remote URLs and S3/Azure paths.
- Boundary markers: Not defined in the provided code templates.
- Capability inventory: The library supports file system writes, network connectivity for data retrieval, and database interactions via SQL engines.
- Sanitization: Standard educational snippets do not include complex validation or sanitization of external inputs.
Audit Metadata