web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [External Downloads] (LOW): Fetches instruction set from
https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md. Evidence: Skill instructions require fetching fresh guidelines before each review. Status: Downgraded to LOW as the source (vercel-labs) is a Trusted GitHub Organization. - [Prompt Injection] (LOW): Potential for indirect remote instruction injection via the fetched Markdown file. 1. Ingestion points:
SKILL.mdtriggers a WebFetch of the guidelines URL. 2. Boundary markers: None present in the instructions. 3. Capability inventory: Local file reading (user-specified) and network fetching (WebFetch). 4. Sanitization: None. Instructions from the remote file are followed directly. Severity is LOW because the source is trusted and the skill lacks write/execute capabilities.
Audit Metadata