frontend-dev
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's instructions and permissions are limited to the intended domain of frontend development. No malicious code patterns, obfuscation, or unauthorized data access were found.
- [COMMAND_EXECUTION]: The skill uses
Bash(npm:*)andBash(npx:*)tools for routine tasks like linting and formatting. These are correctly scoped for the agent's development role. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it reads project files. Ingestion points: Documentation and source files in
docs/andapps/frontend/. Boundary markers: Absent. Capability inventory:Bash(npm:*)andBash(npx:*). Sanitization: Absent. This is a common surface for development agents and does not indicate malicious intent.
Audit Metadata