web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches latest UI guidelines from Vercel Labs' official GitHub repository.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. 1. Ingestion points: Fetches instructions from a remote markdown file and reads local UI source files. 2. Boundary markers: None identified. 3. Capability inventory: WebFetch and local file reading. 4. Sanitization: No explicit sanitization or validation of the fetched guidelines or source files is described.
Audit Metadata