coding
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface (Category 8) due to its processing of untrusted user input.
- Ingestion points: User tasks and code queries triggered by keywords in SKILL.md such as 'write a component', 'implement this feature', and 'fix this query'.
- Boundary markers: The skill does not define specific delimiters or include instructions to the agent to ignore embedded instructions within user-provided data.
- Capability inventory: The skill is authorized to use Read, Grep, and Glob tools for file access, and can invoke auxiliary skills (e.g., react-native-foundations:docs), which are capabilities that could be abused via malicious input.
- Sanitization: There are no validation or escaping protocols defined for the external data processed by the skill.
Audit Metadata