email-template-design
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- SAFE (SAFE): No security issues were identified during analysis. The skill is composed of documentation and static HTML assets for email design.
- NO_CODE (SAFE): The skill lacks executable components (scripts, binaries, or configuration files for code runners), which eliminates risks associated with remote code execution, command injection, or privilege escalation.
- DATA_EXPOSURE & EXFILTRATION (SAFE): No hardcoded credentials or sensitive file paths were detected. External URLs found in the templates are for legitimate placeholders (placehold.co) or documentation examples (example.com).
- INDIRECT_PROMPT_INJECTION (LOW): While the skill involves creating templates that ingest user-provided data via placeholders (e.g., {{email_title}}), it lacks the capability to execute commands or modify the host system based on that data, limiting the impact to content display only.
Audit Metadata