Web UI Design
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: No direct prompt injection or bypass instructions were found in the skill content.
- [NO_CODE]: This skill is entirely instructional markdown and does not include any executable scripts or binary files.
- [DATA_EXFILTRATION]: No sensitive file access or credential exposure patterns were detected.
- [INDIRECT_PROMPT_INJECTION]: The skill uses tools that ingest untrusted data from the web. 1. Ingestion points: Web content via WebSearch and WebFetch (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Write, WebFetch, WebSearch. 4. Sanitization: No sanitization or validation of external content is defined in the instructions.
Audit Metadata