web-artifacts-builder
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses bash scripts to automate the setup and build process of React projects.
- Includes commands for file manipulation with
sed, component extraction withtar, and global installation of thepnpmpackage manager if it is not present on the system. - Utilizes
node -eto programmatically modify project configuration files liketsconfig.jsonduring the initialization phase. - [EXTERNAL_DOWNLOADS]: The scripts fetch a comprehensive set of development dependencies from the official NPM registry.
- Major dependencies include the Vite build tool, Tailwind CSS, Radix UI components, and the Parcel bundler for artifact creation.
- [PROMPT_INJECTION]: The skill creates a development environment for bundling arbitrary code into artifacts, which inherently presents a surface for indirect prompt injection if malicious logic is introduced during the code generation phase.
- Ingestion points: Files in the
src/directory that are developed by the agent or user. - Boundary markers: Absent; the workflow assumes the generated code is safe and does not implement delimiters or warnings within the bundled artifact.
- Capability inventory: The skill provides a full pipeline for building and bundling executable React and JavaScript code into a single HTML file.
- Sanitization: Absent; the scripts bundle the provided source code as-is without performing security analysis or sanitization.
Audit Metadata