software-architecture
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides benign software development guidelines focused on maintainability, readability, and established architectural patterns like Clean Architecture and Domain-Driven Design.
- [EXTERNAL_DOWNLOADS]: The instructions recommend identifying and incorporating third-party libraries and services from public registries like npm to reduce custom code liability.
- [PROMPT_INJECTION]: The 'Library-First' approach creates an attack surface for indirect prompt injection where untrusted external package documentation or metadata could influence the agent's code generation. 1. Ingestion points: External library documentation and npm metadata (referenced in SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Software design and code generation. 4. Sanitization: Absent.
Audit Metadata