web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (SAFE): The skill retrieves guidelines from a trusted source (vercel-labs on GitHub). Per the [TRUST-SCOPE-RULE], this reference is considered safe.
- PROMPT_INJECTION (LOW): The skill has an indirect prompt injection surface as it follows instructions retrieved from a remote URL. However, the source is a trusted organization and the action is required for the skill's core function.
- Indirect Prompt Injection Evidence Chain:
- Ingestion points: remote markdown file (https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md) and user-specified local files.
- Boundary markers: Absent.
- Capability inventory: Reading local files via filesystem tools.
- Sanitization: None.
Audit Metadata