prompt-engineering-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates indirect prompt injection by providing template systems and optimization logic that interpolate external data directly into prompts.
- Ingestion points: In
scripts/optimize-prompt.py, thePromptOptimizer.evaluate_promptmethod renders templates usingtest_case.input. Similarly,references/prompt-templates.mddemonstrates variousrendermethods that accept arbitrary keyword arguments. - Boundary markers: Although some templates in
assets/prompt-template-library.mduse descriptive labels like 'Context:' or 'Question:', they do not implement robust delimiters (e.g., XML tags or unique markers) nor do they include 'ignore embedded instructions' warnings for the LLM. - Capability inventory: The skill's scripts utilize
ThreadPoolExecutorfor parallel execution and are designed to interface with external LLM APIs (e.g., OpenAI), creating a pathway for malicious data to influence model actions. - Sanitization: There is no evidence of input validation or sanitization within the provided template rendering logic to detect or neutralize adversarial prompt injection attempts.
Audit Metadata