addon-rag-ingestion-pipeline
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines a standard workflow for building a Retrieval-Augmented Generation (RAG) system using industry-standard libraries. No malicious patterns were identified.
- [EXTERNAL_DOWNLOADS]: All external dependencies (e.g., pandas, langchain-text-splitters, openai) are well-known packages installed via standard package management (uv). These are considered safe sources.
- [PROMPT_INJECTION]: The instructions do not contain any bypass markers, role-play injections, or attempts to extract system prompts.
- [DATA_EXFILTRATION]: There are no hardcoded credentials or logic for sending sensitive data to unauthorized external endpoints. It explicitly includes a guardrail against raw SQL interpolation.
- [COMMAND_EXECUTION]: Command patterns are restricted to standard development tasks such as dependency installation and local script execution.
Audit Metadata