langfuse-session-list
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- Unverifiable Dependencies & Remote Code Execution (LOW): The skill uses npx to execute its TypeScript script, which may download the tsx package from npm. tsx is a standard and well-known tool for this purpose.
- Indirect Prompt Injection (LOW): The skill retrieves and displays session data from the Langfuse API without sanitization, creating an indirect injection surface.
- Ingestion points: scripts/langfuse-session-list.ts (API fetch call)
- Boundary markers: Absent; data is displayed without delimiters.
- Capability inventory: Network access to Langfuse API and console output.
- Sanitization: None observed for API-retrieved strings.
Audit Metadata