ux-specification
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- PROMPT_INJECTION (LOW): Indirect prompt injection surface detected through the ingestion of external data.
- Ingestion points: The skill processes Product Requirement Documents (PRDs) which may be provided by untrusted sources (File: SKILL.md).
- Boundary markers: Absent. The prompt does not specify delimiters or instructions to ignore embedded commands within the input PRD.
- Capability inventory: The skill instructs the agent to use a 'Write tool' to create a file at
design/06-ux-spec.md(File: SKILL.md). - Sanitization: Absent. Data from the PRD is extracted and reformatted into the specification without escaping or validation.
- NO_CODE (SAFE): Analysis of the skill file confirms it contains only Markdown instructions and YAML metadata; no scripts, binaries, or package manager files are present.
Audit Metadata