Skills
skills/arinhubcom/arinhub/ah-fix-ui-bug/Gen Agent Trust Hub

ah-fix-ui-bug

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the chrome-devtools command-line interface to perform browser operations such as page navigation, screen capture, and performance tracing.
  • Evidence: Frequent use of chrome-devtools navigate_page, take_snapshot, and performance_start_trace in SKILL.md.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8) by ingesting untrusted content from the Document Object Model (DOM) of web pages.
  • Ingestion points: chrome-devtools take_snapshot and chrome-devtools list_console_messages in SKILL.md.
  • Boundary markers: Not present; the agent processes raw browser data directly.
  • Capability inventory: Includes browser script execution (evaluate_script), interaction (click, hover), and file system writes to /tmp (as seen in SKILL.md).
  • Sanitization: None; the skill relies on the agent's internal safety filters when processing scraped page content.
  • [DYNAMIC_EXECUTION]: The skill uses the evaluate_script command to inject and execute dynamic JavaScript snippets into the browser page to monitor UI state and events.
  • Evidence: Examples in SKILL.md and the entire scripts/ directory contain functional JavaScript designed for injection via chrome-devtools evaluate_script.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 09:51 AM