Skip to main content

Workers AI

Provides guidance on using Workers AI for AI inference, model selection, and embedding generation on Cloudflare's serverless platform.

Install this skill

or
47/100

Security score

The Workers AI skill was audited on May 15, 2026 and we found 13 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 225

Template literal with variable interpolation in command context

SourceSKILL.md
225id: `${docId}-chunk-${i}`,
medium line 265

Template literal with variable interpolation in command context

SourceSKILL.md
265content: `Context:\n${context}\n\nQuestion: ${question}`
medium line 299

Template literal with variable interpolation in command context

SourceSKILL.md
299content: `Rate the relevance of this passage to the question on a scale of 0-10:\n\nQuestion: ${question}\n\nPassage: ${candidate.metadata.text}\n\nRating (just the number):`
medium line 323

Template literal with variable interpolation in command context

SourceSKILL.md
323content: `Context:\n${context}\n\nQuestion: ${question}`
medium line 407

Template literal with variable interpolation in command context

SourceSKILL.md
407const cacheKey = `ai:${hash(prompt)}`;
medium line 489

Template literal with variable interpolation in command context

SourceSKILL.md
489const history = await env.KV.get(`chat:${sessionId}`, 'json') || [];
medium line 499

Template literal with variable interpolation in command context

SourceSKILL.md
499await env.KV.put(`chat:${sessionId}`, JSON.stringify(history), {
medium line 511

Template literal with variable interpolation in command context

SourceSKILL.md
511content: `Analyze this document and extract:\n1. Main topics\n2. Key entities\n3. Sentiment\n\nDocument: ${documentText}`
medium line 526

Template literal with variable interpolation in command context

SourceSKILL.md
526content: `Write a blog post about ${topic}. Format:\n# Title\n## Introduction\n## Main Points\n## Conclusion`
medium line 539

Template literal with variable interpolation in command context

SourceSKILL.md
539content: `Extract the following from this email and return as JSON:\n- Name\n- Email\n- Company\n- Message\n\nEmail: ${emailText}\n\nJSON:`
low line 581

External URL reference

SourceSKILL.md
581- Workers AI overview: https://developers.cloudflare.com/workers-ai/
low line 582

External URL reference

SourceSKILL.md
582- Models: https://developers.cloudflare.com/workers-ai/models/
low line 583

External URL reference

SourceSKILL.md
583- AI Gateway: https://developers.cloudflare.com/ai-gateway/
Scanned on May 15, 2026
View Security Dashboard
Installation guide →
GitHub Stars 1
Rate this skill
Categorydevelopment
UpdatedMay 31, 2026
openclawapiml-ai-engineerdata-scientistproduct-managergrowth-marketertechnical-pmdevelopmentdata analyticsproductmarketing
SteveLeve/claude-marketplace