mixedbread-search
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs official vendor libraries ('mixedbread' and '@mixedbread/sdk') from standard registries to facilitate API interaction.
- [COMMAND_EXECUTION]: Provides shell commands for package installation and environment variable setup for secure API key management.
- [DATA_EXFILTRATION]: Accesses and uploads local files to the Mixedbread platform, which is the intended core functionality for creating searchable search indexes.
- [PROMPT_INJECTION]: The skill's ability to ingest data from uploaded files and the web creates a surface for indirect prompt injection. Ingestion points: Files processed via 'stores.files.upload' and external web content from the 'mixedbread/web' search source. Boundary markers: No specific delimiters or instructions are used in the examples to isolate ingested content from the agent's instructions. Capability inventory: The skill uses file read operations and network communication with the Mixedbread API. Sanitization: No explicit sanitization or validation of external content is demonstrated in the provided usage patterns.
Audit Metadata