web-design-guidelines
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the latest design guidelines from Vercel Labs' official GitHub repository to ensure reviews are performed against current best practices.
- [PROMPT_INJECTION]: The skill ingests untrusted data from both a remote URL and user-specified files, which constitutes an indirect prompt injection surface. However, the risk is minimal as the skill's capabilities are restricted to read operations and design analysis, with no access to tools for command execution, file system modifications, or data exfiltration.
Audit Metadata