ugc-fashion
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill consists exclusively of markdown documentation and video prompt templates. No malicious behavior, obfuscation, or unauthorized data access patterns were detected.
- [NO_CODE]: There are no executable files (Python, Node.js, or Shell) included in the skill. Its functionality is entirely declarative, providing structured text for the agent to process.
- [CREDENTIALS_UNSAFE]: The skill requires the environment variable
RAWUGC_API_KEY. No hardcoded keys, tokens, or sensitive file paths are present. - [PROMPT_INJECTION]: The skill templates interpolate user data into prompts, which represents a standard indirect prompt injection surface. Ingestion points: User-provided details for bracketed placeholders (e.g., [OUTFIT DESCRIPTION]) in
SKILL.md. Boundary markers: Absent within the text templates. Capability inventory: The skill has no execution or networking capabilities of its own; it only generates text strings. Sanitization: No explicit sanitization or filtering of user-provided content is performed within the skill.
Audit Metadata