prompt-caching
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill implements patterns that ingest untrusted user input and document content directly into LLM prompts without explicit sanitization or boundary markers.
- Ingestion points:
userQueryvariable inqueryWithCachingandquerymethods;documentsarray inbuildCachedContext(SKILL.md). - Boundary markers: Absent; external input is concatenated or passed directly to message objects without wrapping or specific 'ignore' instructions.
- Capability inventory: The skill interacts with the Anthropic API for model invocation and uses Redis via
ioredisfor persistent data storage. - Sanitization: No input validation, escaping, or filtering of external content is demonstrated in the provided code snippets.
Audit Metadata