stitch-design-md
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches HTML and screenshot assets from official Stitch domains (stitch.withgoogle.com). These resources are retrieved to extract design tokens such as colors, typography, and Tailwind CSS classes used in the project.\n- [PROMPT_INJECTION]: Potential for indirect prompt injection via the ingested HTML assets.\n
- Ingestion points: External HTML files fetched via the htmlCode.downloadUrl provided by the Stitch MCP tool outputs.\n
- Boundary markers: Absent; the skill instructions do not explicitly define delimiters for the fetched HTML content.\n
- Capability inventory: The agent utilizes Read and Write tools to generate and save the DESIGN.md markdown file.\n
- Sanitization: None; the skill performs direct semantic analysis of the raw HTML content to identify design patterns.\n The risk is minimal as the output is restricted to a markdown documentation file and the source is a trusted service.
Audit Metadata