frontend-design
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill uses directive language such as 'CRITICAL' and 'IMPORTANT' to define design constraints. These are benign instructions focused on aesthetic output and do not attempt to override safety filters or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): No credentials, sensitive file paths, or network operations were detected in the skill content.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not perform any package installations or remote script executions. It mentions 'Motion library for React' as a design recommendation, which is a standard UI library.
- [Indirect Prompt Injection] (SAFE): The skill acts as a template for generating code based on user input. It lacks the necessary capabilities (such as file writing or command execution) to be leveraged for malicious indirect injection attacks.
Audit Metadata