Skills
skills/igniteui/igniteui-angular/igniteui-angular-components/Gen Agent Trust Hub

igniteui-angular-components

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The Chat component implementation in 'references/data-display.md' presents an attack surface for indirect prompt injection. The skill provides code that ingests message data and renders it using '[innerHTML]', which could execute instructions or scripts hidden in user-provided content.
  • Ingestion points: 'references/data-display.md' (via 'messages()' signal in the 'igx-chat' component).
  • Boundary markers: Absent in the provided template example.
  • Capability inventory: Rendering content via '[innerHTML]' in 'references/data-display.md'.
  • Sanitization: The example includes a 'fromMarkdown' pipe but does not explicitly show a sanitization layer for the resulting HTML.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 01:47 AM