langchain-sdk-patterns
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill uses LangChain prompt templates that interpolate untrusted data (e.g.,
{text}), which represents a surface for indirect prompt injection if the processed content contains malicious instructions. \n- Ingestion points: The{text}placeholder withinChatPromptTemplate.from_templatein SKILL.md. \n- Boundary markers: None present in the example code patterns. \n- Capability inventory: The skill is grantedRead,Write, andEdittool permissions. \n- Sanitization: No input validation or sanitization logic is provided in the SDK patterns.
Audit Metadata