design
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses standard shell commands (
ls,mkdir) to manage local project files and ensure the directory structure for design artifacts exists. These operations are limited to the local project environment. - [DATA_EXFILTRATION]: No network operations, API calls, or attempts to access sensitive system files (such as credentials or environment variables) were detected. The skill only processes the local
PRODUCT.mdfile. - [PROMPT_INJECTION]: The instructions do not contain any patterns intended to bypass safety filters, jailbreak the model, or ignore previous instructions. The logic is focused entirely on the product validation workflow.
- [REMOTE_CODE_EXECUTION]: The skill does not download external scripts or packages. It relies on internal logic and the invocation of other local skills (e.g., the 'council' skill) in a standard manner.
Audit Metadata