laravel-ai-sdk
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface.
- Ingestion points: The
references/templates/StreamingController.php.mdfile ingests untrusted user data through thetranscriptrequest parameter. - Boundary markers: The agent templates do not include explicit delimiters or instructions to ignore potential commands embedded within the input transcripts.
- Capability inventory: The
SalesCoachagent implemented inreferences/templates/Agent.php.mdhas access to theSearchProductstool (database access) andFileSearchtool (vector store access). - Sanitization: Input is filtered via standard Laravel request validation (type and length checks) but lacks semantic sanitization to prevent instruction override.
Audit Metadata