langchain-agent
Fail
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (HIGH): The setup instructions direct the user to clone a repository from
https://github.com/Eng0AI/langchain-agent.git. This organization is not recognized as a trusted source, meaning the integrity and safety of the downloaded code cannot be verified. - [REMOTE_CODE_EXECUTION] (HIGH): By instructing the user to perform
pnpm installandpnpm devon an untrusted codebase, the skill facilitates the execution of potentially malicious scripts (e.g., npm lifecycle hooks) or binary code within the user's environment. - [PROMPT_INJECTION] (LOW): The skill describes an agent that utilizes a search engine tool. This introduces a surface for Indirect Prompt Injection (Category 8), where untrusted data from search results could attempt to influence the agent's behavior. There are no documented boundary markers or sanitization steps provided in the instructions.
- [CREDENTIALS_UNSAFE] (SAFE): The skill correctly instructs users to provide their own API keys and database URLs via environment variables and does not contain hardcoded secrets.
Recommendations
- AI detected serious security threats
Audit Metadata