workflow
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Trusted Source] (SAFE): All external links and package references point to Vercel-owned infrastructure (useworkflow.dev, github.com/vercel/workflow). Vercel is a trusted organization.
- [Indirect Prompt Injection Surface] (SAFE): The skill describes methods for ingesting untrusted data via hooks and webhooks (Category 8). Evidence: (1) Ingestion: createHook and createWebhook APIs. (2) Boundaries: Delimiters are not explicitly shown in examples. (3) Capabilities: Full network access (fetch) and Node.js module access (fs, etc.) within step functions. (4) Sanitization: Schema validation via Zod is documented and recommended. This surface is an intended architectural feature of the framework.
- [Capabilities] (SAFE): The use of Node.js modules and network operations is restricted to step functions, which is the standard security model for this framework.
Audit Metadata