tailwind-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 13, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- Prompt Injection (SAFE): No behavior override markers or jailbreak attempts were detected in the instructions.
- Data Exposure & Exfiltration (SAFE): The skill does not access sensitive file paths or perform unauthorized network requests.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No patterns for downloading or executing remote scripts were identified.
- Indirect Prompt Injection (LOW): The skill possesses a surface for indirect prompt injection by ingesting untrusted data from project memory and context. Evidence: 1. Ingestion points: uses memoryStore.getSkillMemory and ContextProvider in Steps 2 and 3. 2. Boundary markers: No explicit markers are used to delimit ingested context in the output generation. 3. Capability inventory: The skill can write generated component code to the /claudedocs/ directory. 4. Sanitization: No sanitization or validation of the ingested context data is specified.
Audit Metadata