web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill downloads instructions from 'https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md'. Per [TRUST-SCOPE-RULE], the severity is LOW because vercel-labs is a trusted organization.
- [PROMPT_INJECTION] (LOW): The skill follows rules and formatting instructions provided by a remote file, creating a surface for indirect prompt injection (Category 8). Evidence Chain: 1. Ingestion points: WebFetch retrieval of command.md. 2. Boundary markers: None specified in the prompt template. 3. Capability inventory: Reads local files and generates output analysis. 4. Sanitization: None present.
Audit Metadata