tui-uni-modules-setting
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes an input model JSON to generate TUI components and specifications. It lacks explicit instructions for the agent to use boundary markers (e.g., delimiters) or to ignore instructions embedded within the user-provided data.\n
- Ingestion points: The skill instructions specify parsing an input model JSON in SKILL.md.\n
- Boundary markers: There are no defined delimiters or instructions to treat input as literal data only.\n
- Capability inventory: The skill is limited to generating text-based TUI renders and JSON specifications; it does not perform network operations, file system writes, or subprocess executions.\n
- Sanitization: No sanitization or validation of the input content (other than bbox dimension verification) is performed.
Audit Metadata