famou-result-visualization
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it processes untrusted user-provided Python code and descriptions to generate its visualization results.
- Ingestion points: Python code solutions and problem descriptions provided by the user (as described in SKILL.md).
- Boundary markers: Absent; the skill does not define specific delimiters or instructions to ignore embedded commands within the user's input.
- Capability inventory: The skill is capable of writing a local HTML file (famou_viz_result.html) based on the processed data.
- Sanitization: No explicit sanitization or validation of the extracted data is described before it is embedded into the HTML template.
- [EXTERNAL_DOWNLOADS]: The visualization generated by the skill relies on libraries and styles from well-known services, including React, Tailwind CSS, and Babel via Cloudflare's CDN, and typography from Google Fonts. These are legitimate resources for the skill's intended functionality.
Audit Metadata