ADMET and pharmacokinetic/pharmacodynamic property prediction workflows using ADMET Predictor, AOMP, OBA, Graph-pKa, DeepEsol, and Molecular Descriptors thro...
Security Analysis
medium confidenceThe skill appears purpose-aligned for ADMET/PKPD predictions, but users should notice that it requires a SciMiner API key, sends molecule data or uploaded files to SciMiner, and suggests adding a persistent agent instruction.
The stated purpose, tool list, API calls, and registry entries are coherent for molecular property prediction. The main user-visible sensitivity is that predictions are performed through an external SciMiner service.
Instructions are mostly bounded to SciMiner prediction workflows. The skill does suggest adding a persistent instruction to agent memory or project files, but the suggested content is limited to the credential file path and a warning not to expose the key.
There is no install spec or automatic installer. Setup is manual, but the registry metadata says no primary credential while SKILL.md requires a SciMiner API key file.
Network calls and file uploads are proportionate to the skill's purpose, but users should understand that molecule structures and batch files may leave the local environment.
The skill uses a persistent local credential file and suggests persistent agent/project instructions. No background service, self-propagation, or hidden persistence is shown.
Guidance
This skill is reasonable for its stated purpose if you are comfortable using SciMiner. Before installing, make sure you can share the molecule data with SciMiner, store the API key only in the recommended protected config file, avoid committing credential-related files, and only add the persistent agent instruction if you want future tasks to reuse this configuration.
Latest Release
v1.0.2
**Summary:** Credential storage, tool mapping, and invocation rules have been updated for improved security and accuracy. - Credentials for SciMiner API must now be stored in `~/.config/sciminer/credentials.json` instead of an environment variable; agents must read from this file and never store API keys in prompts or logs. - Invocation patterns and example code updated for robust, secure credential handling. - Tool mapping and naming conventions revised for consistency with SciMiner APIs. - Method selection rules and workflow guidance now explicitly direct which tool to use based on user query type and input format. - Enhanced instructions on file uploads, batch processing, and mapping user requests to the correct tool and feature set.
More by @sciminer
Published by @sciminer on ClawHub
