Skills
skills/rshvr/elite-web-design/elite-css-animations/Gen Agent Trust Hub

elite-css-animations

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [External Downloads] (LOW): The skill references an external JavaScript polyfill in SKILL.md and references/scroll-driven-api.md. While this is a recognized community polyfill, the source (https://flackr.github.io/scroll-timeline/dist/scroll-timeline.js) is not on the pre-approved trusted list.
  • [Indirect Prompt Injection] (LOW): The references/view-transitions.md file contains a code example for a Vanilla SPA that could be exploited if an attacker controls the content of the fetched URL.
  • Ingestion points: fetch(url) in references/view-transitions.md.
  • Boundary markers: None; the example directly injects fetched content.
  • Capability inventory: Uses DOMParser and replaceWith to update the active document.
  • Sanitization: The example lacks any sanitization or escaping of the remote HTML content.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:22 PM