Skills
skills/sien75/graphicode-skills/graphicode-ui-engineer-reuse-ts-react-less/Gen Agent Trust Hub

graphicode-ui-engineer-reuse-ts-react-less

Pass

Audited by Gen Agent Trust Hub on Apr 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill is instructed to automatically execute a git commit command after creating shared components and updating project documentation. This command execution is a standard part of the software development lifecycle intended for this skill.
  • [PROMPT_INJECTION]: The skill processes project files, which creates a surface for indirect prompt injection (Category 8).
  • Ingestion points: The skill reads project configuration from graphig.md and UI code from .tsx and .less files across the project pages.
  • Boundary markers: The instructions do not define specific delimiters or directives to ensure the agent ignores potential instructions embedded within the analyzed source code.
  • Capability inventory: The agent has the ability to read and write files, as well as execute git commands.
  • Sanitization: There is no evidence of content sanitization or validation performed on the ingested code before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 27, 2026, 06:36 AM