Skills
skills/zard-ui/zardui/angular-tooling/Gen Agent Trust Hub

angular-tooling

Pass

Audited by Gen Agent Trust Hub on Feb 12, 2026

Risk Level: LOWNO_CODE
Full Analysis

The skill consists of two markdown files (SKILL.md and references/tooling-patterns.md) that serve as documentation for Angular CLI usage. No direct malicious patterns were detected across any of the 9 threat categories:

  • Prompt Injection: No patterns indicative of prompt injection (e.g., 'IMPORTANT: Ignore', 'You are now') were found. The content is purely instructional.
  • Data Exfiltration: There are no commands or configurations that attempt to read sensitive files (e.g., ~/.aws/credentials, ~/.ssh/id_rsa) or exfiltrate data to untrusted external domains. The CI/CD configurations include codecov/codecov-action@v3 for uploading coverage reports, which is a standard and expected practice in CI/CD and does not constitute sensitive data exfiltration.
  • Obfuscation: No obfuscation techniques such as Base64 encoding, zero-width characters, Unicode homoglyphs, or URL/hex/HTML encoding were detected in the skill content.
  • Unverifiable Dependencies: The skill instructs users to install various npm packages (e.g., @angular-devkit/schematics-cli, @ngrx/signals) and use ng add commands (e.g., @angular/material, @angular/ssr). It also references standard GitHub Actions (actions/checkout@v4, actions/setup-node@v4, codecov/codecov-action@v3) and GitLab CI images (node:20). All these dependencies and tools are from well-known, trusted organizations (Angular/Google, NRx, GitHub, Codecov) and are integral to modern web development. Therefore, these are noted as trusted external references and do not elevate the overall risk.
  • Privilege Escalation: No commands that attempt to escalate privileges (e.g., sudo, chmod 777 on system files, installing services) were found.
  • Persistence Mechanisms: No commands that attempt to establish persistence (e.g., modifying shell configuration files, creating cron jobs, or configuring systemd/LaunchAgents) were found.
  • Metadata Poisoning: The metadata in SKILL.md (name, description) is benign and accurately describes the skill's purpose. No malicious instructions were found embedded in metadata.
  • Indirect Prompt Injection: The skill provides instructions for using Angular CLI and does not process external user-supplied content in a way that would make it susceptible to indirect prompt injection.
  • Time-Delayed / Conditional Attacks: No conditional logic or time-based triggers for malicious actions were detected.

Overall, the skill is a safe, documentation-focused resource for Angular development.

Audit Metadata
Risk Level
LOW
Analyzed
Feb 12, 2026, 08:18 AM