citation-management
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill instructions do not contain any patterns attempting to override agent behavior, bypass safety filters, or extract system prompts.
- [DATA_EXFILTRATION]: No evidence of sensitive file access (e.g., SSH keys, credentials) or unauthorized network activity was found. Network operations are directed exclusively at well-known academic APIs such as CrossRef, NCBI/PubMed, arXiv, and DataCite for the purpose of fetching metadata.
- [EXTERNAL_DOWNLOADS]: The skill references standard academic repositories and established technological services for configuration and metadata extraction, following expected behavior for the stated research purpose.
- [COMMAND_EXECUTION]: Shell command usage is limited to the execution of local utility scripts for searching and formatting citations. No privilege escalation, persistence mechanisms, or obfuscated commands are present.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns, such as piped script downloads or dynamic execution of untrusted code, were identified. Dependencies listed are standard, well-maintained libraries (e.g., requests, biopython).
Audit Metadata