context7-docs-lookup
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious code, obfuscation, or unauthorized data access was detected. The skill uses a documentation API as intended.
- [PROMPT_INJECTION]: The skill ingests external data from the Context7 documentation service, which creates an indirect prompt injection surface.
- Ingestion points: Documentation content fetched via the
query-docstool as described in SKILL.md. - Boundary markers: The instructions do not specify the use of delimiters or 'ignore' instructions for the external content.
- Capability inventory: No scripts or tools with executable capabilities (e.g., subprocess, file-write) were provided with this skill.
- Sanitization: No explicit validation or filtering of the fetched documentation content is performed.
Audit Metadata