rag-retrieval
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate technical reference for building RAG systems. It provides patterns for embeddings, reranking, and hybrid search.
- [SAFE]: Network operations described in the code snippets target well-known and reputable service providers such as OpenAI, Pinecone, Anthropic, Cohere, and Tavily.
- [SAFE]: Dependencies and libraries referenced (e.g., LangChain, SQLAlchemy, NumPy, PyMuPDF) are standard industry tools with no evidence of typosquatting or malicious packages.
- [SAFE]: Security-sensitive operations, such as API key management, are handled using standard best practices like environment variables in the provided examples.
- [SAFE]: No evidence of prompt injection or obfuscation was detected. Prompt instructions are consistently aimed at improving retrieval accuracy and preventing hallucinations.
Audit Metadata