Skills
skills/ntaksh42/agents/d3-visualization/Gen Agent Trust Hub

d3-visualization

Pass

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The skill's examples include script tags that load the D3.js library from 'https://d3js.org/d3.v7.min.js'. This is a standard practice for web-based visualizations but introduces a dependency on an external domain not listed in the trusted sources.- [PROMPT_INJECTION] (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) because it interpolates untrusted data into generated code. * Ingestion points: Data fields like 'nodes', 'links', and 'name' provided in user prompts. * Boundary markers: None present in the provided templates. * Capability inventory: The skill generates HTML and JavaScript meant for execution/rendering in a browser or notebook environment. * Sanitization: The provided templates do not show explicit sanitization of data before it is rendered into the DOM, which could lead to Cross-Site Scripting (XSS) if the source data is malicious.
Audit Metadata
Risk Level
LOW
Analyzed
Feb 16, 2026, 11:24 AM