ui-ux-pro-max
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The SKILL.md documentation provides instructions for the agent to install Python using system-level package managers (sudo apt, brew, winget). Although these are standard setup steps, executing privileged commands is noted as a minor concern.\n- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection surface detected. Ingestion points: scripts/core.py reads from various local CSV files (e.g., styles.csv, colors.csv). Boundary markers: Absent; output from scripts/search.py is not delimited. Capability inventory: Scripts are limited to reading local files and printing text; no network or dynamic execution capabilities were found. Sanitization: Absent; content from the CSV database is passed directly to the agent context without filtering for potential malicious instructions.
Audit Metadata