web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- EXTERNAL_DOWNLOADS (SAFE): The skill fetches guidelines from a remote URL (https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md). According to the [TRUST-SCOPE-RULE], vercel-labs is a trusted organization, which downgrades the severity of this download to SAFE.
- INDIRECT_PROMPT_INJECTION (LOW): The skill ingests external text which guides the AI's auditing behavior. 1. Ingestion points: Remote Markdown file fetch. 2. Boundary markers: None. 3. Capability inventory: Local file reading (UI code). 4. Sanitization: None. The risk is minimized by the trusted nature of the guideline source.
Audit Metadata