rag-skills
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION] (SAFE): The skill consists of instructional documentation and code patterns; no instructions to bypass safety filters or override system behavior were found.
- [DATA_EXFILTRATION] (SAFE): No hardcoded credentials, API keys, or unauthorized data transmission logic identified. The code snippets correctly utilize environment variables for configuration.
- [REMOTE_CODE_EXECUTION] (SAFE): No patterns of remote code execution or unsafe dynamic loading. All mentioned libraries (Celery, LlamaIndex) are used according to standard development practices.
- [COMMAND_EXECUTION] (SAFE): No evidence of arbitrary command execution or unsafe subprocess spawning. Use of Celery's worker_main is restricted to defined framework parameters.
- [SAFE] (SAFE): The skill promotes defensive programming through metadata cleaning and circuit breaker patterns for external API calls.
Audit Metadata