developing-lt-frontend
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the NPM registry to download and install dependencies and project templates through commands like
pnpm addandpnpm dlx(e.g.,nuxt-security,create-nuxt-base). These are standard operations for frontend development within the specified ecosystem. - [COMMAND_EXECUTION]: Instructions are provided for running local shell commands to manage the development lifecycle, such as starting development servers (
pnpm run dev), generating API types (pnpm run generate-types), and executing End-to-End tests via Playwright. - [COMMAND_EXECUTION]: Includes administrative commands for environment maintenance, such as port management using
lsofandkillto resolve process conflicts during development. - [PROMPT_INJECTION]: Indirect prompt injection surface identified. Ingestion points: Browser snapshots, network request logs, and local frontend code files. Boundary markers: None explicitly defined for agent instructions. Capability inventory: Shell command execution and browser interaction via Chrome DevTools MCP. Sanitization: Extensive guidance provided for sanitizing application data using
DOMPurifyand validating inputs withValibot.
Audit Metadata