Skills
skills/partme-ai/stitch-skills/stitch-uview-components/Gen Agent Trust Hub

stitch-uview-components

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill employs a local utility script scripts/fetch-stitch.sh to download design HTML and metadata from external URLs. These URLs are provided by the official Stitch toolset (stitch.withgoogle.com), which is a well-known service. The downloads are necessary for the skill's primary function of design-to-code conversion.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute an internal script, scripts/fetch-stitch.sh. This execution is confined to a specific task (fetching design assets) and does not involve arbitrary command execution or system-wide changes.
  • [PROMPT_INJECTION]: The skill possesses an attack surface for indirect prompt injection because it ingests and processes external design data from Stitch to generate code.
  • Ingestion points: temp/source.html (downloaded from external URLs provided by Stitch MCP).
  • Boundary markers: Not explicitly defined in the instructions for the downloaded content.
  • Capability inventory: Write (for file creation), Bash (for running the fetch script).
  • Sanitization: No explicit sanitization or filtering of the HTML content is performed before the agent processes it for code generation.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 08:32 AM