Skills
skills/doyoonear/skills-and-agents/color-theory-palette-harmony-expert/Gen Agent Trust Hub

color-theory-palette-harmony-expert

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill requires the Bash tool to execute Python implementations of color science algorithms (e.g., Sinkhorn, Earth-Mover Distance) provided in the reference files. This is a powerful capability used to fulfill the skill's technical purpose.
  • [EXTERNAL_DOWNLOADS]: The documentation specifies the installation of well-known Python packages from PyPI, such as colormath, pot, and opencv-python. These are standard tools for computational color matching.
  • [PROMPT_INJECTION]: The skill uses Firecrawl and WebFetch to ingest external web data, creating a potential surface for indirect prompt injection.
  • Ingestion points: Web content fetched via mcp__firecrawl__firecrawl_search and WebFetch in SKILL.md.
  • Boundary markers: None identified to isolate untrusted data from instructions.
  • Capability inventory: The availability of Bash, Write, and Edit allows for significant system interaction based on external input.
  • Sanitization: No specific filtering or sanitization of ingested content is described.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 06:39 AM