reviewing-tailwind-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to analyze external, untrusted content such as CSS and configuration files. This presents a vulnerability surface where malicious instructions embedded in the code being reviewed could attempt to influence the agent's behavior or reporting.
- Ingestion points: Source files and configuration files are processed using the
Read,Grep, andGlobtools. - Boundary markers: Absent. The instructions do not define clear delimiters or instruct the agent to ignore instructions found within the processed data.
- Capability inventory: Access is restricted to read-only tools (
Read,Grep,Glob). The skill lacks capabilities for file modification, command execution, or network communication. - Sanitization: No sanitization or validation of the ingested content is performed.
Audit Metadata