Skills
skills/hhhh124hhhh/langgraph-partner/ai-partner-chat/Gen Agent Trust Hub

ai-partner-chat

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires downloading standard Python libraries (chromadb, sentence-transformers) and a large embedding model (BAAI/bge-m3). These are hosted on well-known platforms like PyPI and Hugging Face and are necessary for the skill's core functionality.
  • [COMMAND_EXECUTION]: The setup process involves standard shell commands for environment preparation:
  • mkdir -p config notes vector_db scripts for directory structure.
  • python3 -m venv venv and pip install for dependency management.
  • [DYNAMIC_EXECUTION]: The core workflow (Section 1.2) explicitly instructs the agent to analyze note formats and dynamically generate/execute Python code for chunking. While this is an intended feature of the 'AI Agent approach' described in the skill, it creates a surface where the agent executes code it generates based on local files.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes user-provided content which serves as an injection surface:
  • Ingestion points: Files located in the notes/ and config/ directories.
  • Boundary markers: None explicitly defined in the retrieval logic to differentiate between user instructions and data.
  • Capability inventory: The skill facilitates subprocess execution and file system operations via the generated chunking scripts.
  • Sanitization: No sanitization is performed on note content before it is used for embedding or code generation analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 03:14 PM
Security Audit — agent-trust-hub — ai-partner-chat