woltz-react-rich-domain
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill requires installation of external npm packages
@woltz/react-rich-domainand@tanstack/react-query. These are third-party dependencies from sources not included in the trusted scope list. - [PROMPT_INJECTION] (LOW): The skill exposes an Indirect Prompt Injection surface (Category 8). 1. Ingestion points: The
queryFnproperty inuseCriteriaTableanduseCriteriaKanban(SKILL.md) fetches data from external endpoints like/api/users. 2. Boundary markers: Absent in the provided examples. 3. Capability inventory: Limited to UI rendering (DataTable, Kanban). 4. Sanitization: Relies on default React DOM escaping, which prevents XSS but does not filter natural language instructions that could influence downstream agent behavior.
Audit Metadata