nodel-frontend
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [General Security] (SAFE): The skill is documentation-only and contains no executable scripts or binary files. All code examples provided are illustrative and follow standard platform usage.
- [Data Security] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network exfiltration patterns were found. Examples use local or placeholder addresses.
- [Indirect Prompt Injection] (INFO): The documentation defines a UI surface that ingests platform data via event and data attributes in SKILL.md and components.md (Ingestion points). No specific boundary markers or sanitization techniques are described in the reference content (Boundary markers/Sanitization). The documented capabilities include triggering platform actions and running custom JavaScript for UI logic (Capability inventory).
Audit Metadata