Skills
skills/modu-ai/moai-adk/moai-design-system/Gen Agent Trust Hub

moai-design-system

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it ingests external design data and has code-writing capabilities. This is an architectural characteristic of its design-to-code functionality.\n
  • Ingestion points: Design state, style guidelines, and style guides are retrieved via mcp__pencil__get_editor_state, mcp__pencil__get_guidelines, and mcp__pencil__get_style_guide in SKILL.md.\n
  • Boundary markers: No explicit delimiters or instructions to ignore instructions embedded in the design data are present in the documentation.\n
  • Capability inventory: The skill is authorized to use Write and Edit tools to modify project files based on design input.\n
  • Sanitization: No explicit validation or escaping of design content is defined before the data is processed into code.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 12:18 AM