frontend-design
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): The skill uses instructional markers like 'CRITICAL' and 'IMPORTANT' to emphasize design quality and creative direction. These do not attempt to bypass safety filters or override core system instructions.
- [Data Exposure & Exfiltration] (SAFE): No access to sensitive files (~/.ssh, .env, etc.), hardcoded credentials, or network operations (curl, fetch) are present.
- [Remote Code Execution] (SAFE): No external dependencies are installed and no remote scripts are downloaded or executed.
- [Indirect Prompt Injection] (INFO): While the skill processes user-provided requirements to generate code, it does not possess autonomous capabilities to execute that code, perform file system writes, or make network calls. It functions as a set of stylistic constraints for the AI's output.
Audit Metadata