ship-page
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or persistence mechanisms were detected. The skill's behavior is consistent with its stated purpose of creating web pages.
- [EXTERNAL_DOWNLOADS]: The skill uses well-known and trusted Content Delivery Networks (CDNs), specifically Google Fonts and Cloudflare (cdnjs) for Font Awesome, to provide typography and iconography. This is a standard and safe practice for web development.
- [PROMPT_INJECTION]: While the skill processes user-provided content such as README files (an indirect prompt injection surface), it includes a mandatory manual confirmation step in Phase 1 where the agent must present the extracted content to the user for approval before generation, mitigating potential risks.
- [DATA_EXFILTRATION]: No hardcoded credentials, sensitive file path access, or unauthorized network operations were found during the analysis.
Audit Metadata