Skills
skills/calcom/cal.com/web-design-guidelines/Gen Agent Trust Hub

web-design-guidelines

Pass

Audited by Gen Agent Trust Hub on Feb 15, 2026

Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (INFO): Fetches guidelines from vercel-labs/web-interface-guidelines. This repository belongs to a trusted organization.
  • [PROMPT_INJECTION] (LOW): The skill fetches instructions from a remote URL that are used to influence agent behavior (auditing rules). This creates an indirect prompt injection surface. 1. Ingestion points: https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md in SKILL.md. 2. Boundary markers: Not explicitly defined for the remote content. 3. Capability inventory: Reading local files provided by the user. 4. Sanitization: None identified.
  • [COMMAND_EXECUTION] (LOW): Accesses local file system to read UI code for auditing.
Audit Metadata
Risk Level
LOW
Analyzed
Feb 15, 2026, 10:27 PM