phoenix-integration-snippets
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Detected an indirect prompt injection surface where the skill ingests content from external sources to generate code snippets that are written to the project's source code. * Ingestion points: documentation in
docs/phoenix/integrations/and content from theArize-ai/openinferenceGitHub repository. * Boundary markers: Not present. * Capability inventory: Modifies application source files inapp/src/components/project/integrationSnippets/andapp/src/pages/project/integrationRegistry.tsx. * Sanitization: Not present; the skill does not define validation steps for the external content before it is used in code generation. - [COMMAND_EXECUTION]: The skill instructs the agent to execute generated code snippets in isolated environments to verify that telemetry traces are properly exported.
- [DATA_EXFILTRATION]: No unauthorized data exfiltration patterns detected. Network references are confined to the vendor's own GitHub repository and local testing ports.
Audit Metadata