app-legal-pages
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local Python scripts to generate content, check for document consistency, and orchestrate the deployment process. It also invokes the Cloudflare wrangler CLI to manage and publish the generated static site.
- [EXTERNAL_DOWNLOADS]: To enable deployment, the skill documentation instructs the user to install the Cloudflare wrangler package from the official NPM registry.
- [SAFE]: The skill implements a mandatory review gate that requires explicit user confirmation before any deployment action is taken.
- [SAFE]: The legal document generator utilizes html.escape to sanitize user-provided descriptions and requires feature text to be ASCII-only before inclusion, mitigating risks associated with malicious content injection.
- [SAFE]: The skill possesses an indirect prompt injection surface as it processes external application feature documents. Ingestion points: The scripts/generate_legal_site.py and scripts/check_consistency.py files read the user-provided feature markdown. Boundary markers: None are present in the file reading logic. Capability inventory: The skill has the ability to write to the local file system and execute network deployments via wrangler. Sanitization: Strict ASCII checks and HTML escaping are applied to all ingested content before rendering it into legal pages.
Audit Metadata