typography
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection because its primary function is to ingest and audit untrusted prose-heavy content from documents or web UIs. Ingestion points: Document text and web content provided by the user for review. Boundary markers: The skill lacks explicit delimiters or instructions to ignore embedded commands within the input text. Capability inventory: The skill's capabilities are restricted to generating textual audits, CSS snippets, and formatting instructions. It does not have access to subprocesses, the file system, or the network. Sanitization: No input validation or filtering of external content is specified.
Audit Metadata