frontend-design
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill instructions require the agent to process external requirements and reference websites (ingestion points), creating an attack surface for indirect prompt injection. No boundary markers or 'ignore embedded instruction' warnings are provided to delimit untrusted content. The agent's capability inventory includes implementing working code and 'deploying' variants, which could be exploited if malicious instructions are embedded in the reference materials. No sanitization or validation of the external content is described.
- [Prompt Injection] (SAFE): No instructions attempting to bypass safety filters or override system constraints were detected in the skill body or metadata.
- [Data Exposure & Exfiltration] (SAFE): No access to sensitive file paths, hardcoded credentials, or unauthorized network operations were found.
- [No Code] (INFO): The skill contains no executable scripts or binaries, consisting entirely of instructional markdown content.
Audit Metadata