tailwind
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of markdown documents and YAML metadata. It does not include any Python scripts, JavaScript files, or binary executables.
- [SAFE]: Comprehensive analysis of the provided rules and workflow instructions found no evidence of malicious intent, unauthorized data access, or persistence mechanisms. The skill operates within the local environment for the purpose of styling improvements.
- [PROMPT_INJECTION]: The skill identifies a surface for indirect prompt injection as it ingests project files for auditing (ingestion points: project files in Step 1; capability: file modification in Step 3; boundary markers: none; sanitization: none). However, this risk is assessed as safe given the lack of network access and the specialized nature of the task.
Audit Metadata