pencil-ui-design-system-layui
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates the automated setup of design tokens and the creation of UI component frames within the Pencil application environment. All tool invocations are scoped to document editing tasks.
- [SAFE]: External URLs within the skill documentation reference the official Layui framework website, which is a well-known service.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it processes user input to define UI components. Ingestion points: User-provided design requirements via prompt. Boundary markers: Not present in instructions. Capability inventory: Uses Pencil MCP tools set_variables and batch_design for document modification. Sanitization: No explicit validation or filtering of user-supplied data.
Audit Metadata