ai-wrapper-product
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The implementation examples reference the @anthropic-ai/sdk Node.js package. This is the official client library for Anthropic's API, a well-known and trusted service provider.
- [PROMPT_INJECTION]: The skill demonstrates patterns for processing user-provided data within AI prompts, which represents an indirect prompt injection surface.
- Ingestion points: The userInput parameter in the generateContent function (SKILL.md) and prompt template inputs.
- Boundary markers: The examples utilize standard API roles (system vs. user messages) to provide structural separation between instructions and data.
- Capability inventory: The code snippets are limited to external API interactions via a trusted SDK; no dangerous capabilities such as filesystem access or shell execution are present.
- Sanitization: The implementation includes input length validation and structured output parsing to mitigate potential risks from untrusted model outputs.
Audit Metadata