web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches design guidelines and rule sets from Vercel Labs' official GitHub repository to provide up-to-date compliance checks.
- [PROMPT_INJECTION]: The skill processes user-provided files, presenting an indirect prompt injection surface.
- Ingestion points: Reads local files or file patterns specified by the user at runtime.
- Boundary markers: No explicit delimiters or 'ignore embedded instructions' warnings are defined in the skill body.
- Capability inventory: Restricted to reading local files and performing network GET requests to trusted domains.
- Sanitization: No sanitization or filtering of ingested file content is performed.
Audit Metadata