design-react-components
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The instructions provide a standard role-play persona and design constraints without attempting to bypass safety filters or override system-level instructions.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns were detected. The skill focuses on UI architecture.
- [Indirect Prompt Injection] (LOW): The skill processes external data in the form of UI screenshots. While this is an ingestion point for untrusted data, the skill lacks the necessary capabilities (such as network access or shell execution) to facilitate a dangerous exploit. No sanitization logic is explicitly defined in the prompt.
- [Remote Code Execution] (SAFE): There are no patterns suggesting the download or execution of remote scripts or packages. The provided TSX code is an illustrative example only.
- [Obfuscation] (SAFE): No encoded content, hidden characters, or homoglyphs were found in the skill text or metadata.
Audit Metadata