web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches design guidelines and instructions from the official Vercel Labs GitHub repository. This is a trusted source and is considered safe.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it processes instructions from an external Markdown file. 1. Ingestion points: Guidelines are fetched from an external GitHub URL via the WebFetch tool. 2. Boundary markers: No explicit delimiters or boundary markers are used to isolate the fetched instructions. 3. Capability inventory: The skill possesses the capability to read local files specified by the user. 4. Sanitization: There is no evidence of content sanitization or validation of the fetched guidelines. However, since the source is a trusted organization, the risk is negligible.
Audit Metadata