Skills
skills/derklinke/codex-config/web-design-guidelines/Gen Agent Trust Hub

web-design-guidelines

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches guidelines from the official Vercel Labs GitHub repository (github.com/vercel-labs). This is a trusted source and the download is required for the skill's primary function of auditing code against latest standards.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it processes external data.
  • Ingestion points: Design guidelines fetched from a remote URL and local files provided by the user.
  • Boundary markers: No explicit delimiters or boundary instructions are defined in the skill file.
  • Capability inventory: The skill is restricted to fetching remote data and reading local files.
  • Sanitization: There is no evidence of sanitization or validation of the fetched guideline content.
  • [SAFE]: No malicious patterns, such as data exfiltration, credential harvesting, or unauthorized command execution, were found in the skill metadata or instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 01:35 PM