Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/groq-performance-tuning/Gen Agent Trust Hub

groq-performance-tuning

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: No malicious code, obfuscation, or hardcoded credentials were detected within the skill files.
  • [EXTERNAL_DOWNLOADS]: The skill references established industry libraries including lru-cache, ioredis, and dataloader for performance optimization.
  • [PROMPT_INJECTION]: The skill's architecture presents a surface for indirect prompt injection through external API data ingestion.
  • Ingestion points: Data is retrieved from the Groq API in SKILL.md via the cachedGroqRequest and dataloader implementations.
  • Boundary markers: The code snippets do not include delimiters or instructions to ignore embedded commands within the fetched data.
  • Capability inventory: The agent is granted Read, Write, and Edit permissions, allowing for potential manipulation of the local environment based on injected instructions.
  • Sanitization: No explicit data validation, escaping, or filtering of the API responses is demonstrated in the provided logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 12:40 AM