Skills
skills/wot-ui/open-wot/wot-ui-v2/Gen Agent Trust Hub

wot-ui-v2

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to use a local CLI tool named wot to retrieve documentation and component metadata. Commands used include wot list, wot info, wot demo, wot doc, and wot token. These are intended for local documentation lookup within the repository environment.
  • [EXTERNAL_DOWNLOADS]: The documentation references external packages @wot-ui/ui and sass as standard dependencies for projects using the wot-ui library. These are legitimate resources associated with the component library.
  • [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection (Category 8c) because it reads documentation and code examples via the CLI tool. This external data is then incorporated into the agent's context. However, as this is the primary intended function of the skill and the sources are local documentation files, the risk is minimal.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 09:53 AM