design-exploration
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or behaviors detected during the analysis of the skill instructions.
- [PROMPT_INJECTION]: The 'Bypass' instruction in the skill body is a procedural directive to skip design exploration when the user provides complete technical specifications, not an attempt to circumvent AI safety filters.
- [DATA_EXFILTRATION]: The skill reads local configuration files (e.g., globals.css, tailwind config) to ensure design consistency. This is a functional requirement and no instructions for sending this data to external or untrusted domains were found.
- [PROMPT_INJECTION]: The skill has a surface for Indirect Prompt Injection (Category 8) as it processes existing codebase content. 1. Ingestion points: Reading of existing code, design assets, and user specs in Phase 1. 2. Boundary markers: No specific delimiters or 'ignore' warnings for ingested content are defined. 3. Capability inventory: Ability to read, write, and delete code files in Phase 3. 4. Sanitization: No explicit content validation or sanitization is specified.
Audit Metadata