Skills
skills/partme-ai/full-stack-skills/tauri-scaffold/Gen Agent Trust Hub

tauri-scaffold

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its use of template variables in templates/basic.md.
  • Ingestion points: The template file templates/basic.md accepts untrusted user input for variables such as {project_name}, {frontend_framework}, and {dev_url}.
  • Boundary markers: No explicit delimiters or boundary markers are used to separate user-provided content from the skill's instructions.
  • Capability inventory: The skill allows the agent to suggest and potentially execute shell commands (e.g., create-tauri-app) and modify project configuration files.
  • Sanitization: There is no evidence of sanitization, validation, or escaping of the user-provided input before it is used in the context of generating commands or configuration.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 10:14 AM