Skills
skills/rebyteai-template/rebyte-skills/web-app-builder/Gen Agent Trust Hub

web-app-builder

Pass

Audited by Gen Agent Trust Hub on Feb 21, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (LOW): The skill executes npm install and npm run build on project files. This can trigger lifecycle scripts (e.g., postinstall) or build-time code execution defined within a project's package.json.
  • [EXTERNAL_DOWNLOADS] (LOW): The build process downloads third-party packages from the public npm registry, which are then executed locally during the build phase.
  • [DATA_EXFILTRATION] (LOW): Local files are compressed into a ZIP archive and uploaded to api.rebyte.ai. While this is the intended purpose of the tool, it involves sending local data to an external, non-whitelisted domain.
  • [PROMPT_INJECTION] (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) because it processes untrusted data with significant capabilities.
  • Ingestion points: Processes user-provided web application source code.
  • Boundary markers: None specified to prevent the agent from following instructions embedded in the code files.
  • Capability inventory: Shell execution (npm), file system operations (zip), and network requests (curl).
  • Sanitization: No evidence of sanitization or validation of the project files prior to execution or upload.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 21, 2026, 02:25 PM