infocard
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a template repository and set of design instructions for visual formatting. It does not include executable scripts, network access, or file system operations.
- [PROMPT_INJECTION]: Analysis of the instructions found no malicious patterns, bypass attempts, or instructions to override safety guardrails. The 'Critical Rules' are technical constraints aimed at ensuring correct HTML rendering in Markdown viewers.
- [DATA_EXFILTRATION]: No network-capable tools or access to sensitive local file paths (e.g., .ssh, .aws) are requested or used.
- [INDIRECT_PROMPT_INJECTION]: The skill acts as a content formatter. While it ingests user text (Ingestion Point: user-provided summaries in SKILL.md) and possesses the capability to generate HTML markup (Capability: HTML/CSS generation), the risk is negligible as it is restricted to stylistic presentation within the agent's output and lacks autonomous actions. Boundary markers and sanitization instructions are absent, which is standard for UI-generation skills.
Audit Metadata