Skills
skills/curiositech/some_claude_skills/color-contrast-auditor/Gen Agent Trust Hub

color-contrast-auditor

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill methodology instructs the agent to use the grep command-line tool to extract hex codes and color values from local CSS and component files.
  • [PROMPT_INJECTION]: Indirect prompt injection surface detected due to the ingestion and processing of untrusted content.
  • Ingestion points: Audits styles from styles.css and React files (*.tsx, *.jsx) using grep, and analyzes visual data from screenshots.
  • Boundary markers: The instructions provide no boundary delimiters or specific directives for the agent to ignore instructions embedded within the processed files or images.
  • Capability inventory: The agent is granted significant permissions including Read, Write, Edit, WebFetch, Glob, and Grep.
  • Sanitization: No input validation or sanitization of the audited files or images is defined.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 12:54 PM