The Agent Skills Directory

[External Downloads] (LOW): The skill fetches guidelines from a remote source at raw.githubusercontent.com. Because the source repository (vercel-labs/web-interface-guidelines) belongs to a verified organization in the trusted list, the severity is downgraded to LOW per the [TRUST-SCOPE-RULE].
[Indirect Prompt Injection] (LOW): Mandatory Evidence Chain: 1. Ingestion Points: Fetches 'command.md' guidelines and reads local files via argument-hint. 2. Boundary Markers: Absent; the skill does not explicitly delimit the fetched instructions from the data being reviewed. 3. Capability Inventory: Limited to reading files and outputting text to the console (no file writes or system command execution detected). 4. Sanitization: Absent; content is used directly for logic. Due to the limited capability tier (Display/Analysis only), the severity remains LOW.

web-design-guidelines