langgraph-docs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted external data from the web, which could contain hidden instructions designed to manipulate the agent's output or behavior.
- Ingestion points:
SKILL.md(Step 1 and Step 3 usefetch_urlto ingest content from docs.langchain.com). - Boundary markers: Absent; the instructions do not provide delimiters or warnings to ignore instructions found within the retrieved documentation.
- Capability inventory: The skill uses retrieved content to provide guidance and complete user requests, potentially allowing data to influence logic.
- Sanitization: Absent; there is no validation or filtering of the content fetched from the remote documentation URLs.
- [External Downloads] (SAFE): The skill references
docs.langchain.comfor documentation. This is a reputable source associated with thelangchain-aiecosystem, which is recognized as a trusted entity. The operation is limited to data retrieval with no evidence of sensitive data transmission.
Audit Metadata