frontend-design
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): The instructions use strong language for aesthetic enforcement but do not attempt to override system safety protocols or extract internal configurations.
- Data Exposure & Exfiltration (SAFE): There are no patterns suggesting access to sensitive files or data exfiltration via network calls.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No remote code downloading or package installation commands are present. The mention of libraries like React and Motion is contextual for code generation.
- Indirect Prompt Injection (LOW/INFO): While the skill processes untrusted user input for requirements, it does not provide the agent with high-privilege capabilities such as file modification or shell access, mitigating the risk of adversarial input causing harm.
Audit Metadata