web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches updated web design guidelines from Vercel Labs' official GitHub repository.- [PROMPT_INJECTION]: The skill incorporates instructions from an external URL to drive its auditing logic, which represents an indirect prompt injection surface.
- Ingestion points: Fetches content from https://raw.githubusercontent.com/vercel-labs/web-interface-guidelines/main/command.md.
- Boundary markers: Absent; fetched content is treated as a direct set of rules to follow.
- Capability inventory: Reading local files specified by the user.
- Sanitization: Absent; the skill does not validate or filter the fetched markdown content before application.
Audit Metadata