chroma

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
  • [SAFE]: The skill provides documentation and examples for using ChromaDB, a standard vector database. No malicious behavior or unsafe code was detected.
  • [PROMPT_INJECTION]: The skill defines a surface for indirect prompt injection as it facilitates the ingestion of external documents into a vector database for retrieval. This is a functional requirement of the technology.
  • Ingestion points: collection.add, Chroma.from_documents, and VectorStoreIndex.from_documents (SKILL.md, references/integration.md).
  • Boundary markers: Not specified in the provided code examples.
  • Capability inventory: The skill documentation does not define specific executable tools, but the database stores content for agent retrieval.
  • Sanitization: No explicit sanitization or filtering logic is provided in the examples.
  • [EXTERNAL_DOWNLOADS]: The documentation references standard package installation from PyPI and NPM (e.g., chromadb, sentence-transformers). These references point to official repositories of well-known services.
  • [CREDENTIALS_UNSAFE]: API key references in the code snippets use generic placeholders (e.g., "your-key"), which is a safe and standard practice for documentation.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 12:55 AM
Security Audit — agent-trust-hub — chroma