eino-guide
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references official Go packages from github.com/cloudwego/eino and github.com/cloudwego/eino-ext. These are legitimate vendor resources used for installing the Eino framework via the standard 'go get' command.
- [CREDENTIALS_UNSAFE]: Code examples in the quick-start guide use appropriate placeholders like 'your-api-key' for sensitive configuration, following security best practices to avoid hardcoding secrets.
- [DATA_EXPOSURE]: Analysis of the Go code snippets confirms that data handling is restricted to the framework's intended orchestration and communication with LLM providers using official client libraries.
- [PROMPT_INJECTION]: The instructions provided to the agent focus on routing queries to specialized Eino skills and maintaining coding standards (such as resource management with stream closing). No instructions attempting to bypass safety filters or override system behavior were found.
Audit Metadata