Skills
skills/zainhas/togetherai-skills/together-dedicated-containers/Gen Agent Trust Hub

together-dedicated-containers

Pass

Audited by Gen Agent Trust Hub on Mar 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the together Python package and together-ai Node.js package from standard registries. It also references the sprocket SDK which is fetched from Together AI's private PyPI index (https://pypi.together.ai/). These are official resources for a well-known service provider.\n- [PROMPT_INJECTION]: The worker framework (demonstrated in scripts/sprocket_hello_world.py) processes user-supplied data in the predict method, creating a surface for indirect prompt injection.\n
  • Ingestion points: The args dictionary in HelloModel.predict within scripts/sprocket_hello_world.py.\n
  • Boundary markers: No specific delimiters or safety instructions are used to separate untrusted input from model logic in the provided examples.\n
  • Capability inventory: The worker environment supports full CUDA access and can trigger file uploads via sprocket.FileOutput. Additionally, the Jig CLI manages container builds and deployments.\n
  • Sanitization: Input validation is not present in the provided templates.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 4, 2026, 08:06 PM