rag-implementation
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill outlines a RAG architecture that introduces a surface for indirect prompt injection through data ingestion.
- Ingestion points: Local files are loaded using
DirectoryLoaderinSKILL.md. - Boundary markers: The skill uses variable markers such as
{context}to insert retrieved content into model prompts. - Capability inventory: The code samples use
langchainfor retrieval and LLM interaction. No dangerous system commands or unauthorized network operations were identified. - Sanitization: The provided implementations do not include steps for sanitizing or validating the retrieved document content prior to prompt interpolation.
Audit Metadata