langsmith-fetch
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of the 'langsmith-fetch' Python package. This resource is explicitly linked to the official LangChain organization, which is identified as a well-known and trusted service provider in the AI development ecosystem.\n- [COMMAND_EXECUTION]: The skill instructions involve various system-level operations for setup and analysis, including package installation via 'pip', directory creation with 'mkdir', and pattern matching with 'grep'. It also provides guidance on persisting API keys within shell profile files like '.bashrc', which is a standard procedure for configuring CLI tools.\n- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it ingests and processes external agent traces.\n
- Ingestion points: Retrieval of execution traces from the LangSmith API via 'langsmith-fetch trace' commands (SKILL.md).\n
- Boundary markers: The agent parses the raw output of these traces without explicit delimiters or warnings to ignore embedded instructions within the data.\n
- Capability inventory: The skill environment allows for subprocess execution and file system manipulation.\n
- Sanitization: No specific validation or sanitization steps are documented for the incoming trace data before it is analyzed by the agent.\n- [SAFE]: No malicious patterns, such as direct prompt injection, obfuscation, or unauthorized data exfiltration, were identified. The skill's operations are transparent and consistent with its primary objective of agent debugging and performance monitoring.
Audit Metadata