component-split
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns, data exfiltration attempts, or unauthorized system commands were detected. The skill is entirely focused on providing architectural advice for frontend development.\n- [PROMPT_INJECTION]: The skill processes untrusted user-provided component code, which is a vector for indirect prompt injection. The risk is negligible as the agent only generates refactored code and summary text, without access to any sensitive tools or network operations.\n
- Ingestion points: User-provided component code in SKILL.md.\n
- Boundary markers: None specified in the instructions.\n
- Capability inventory: No file system access, network requests, or shell executions are called for.\n
- Sanitization: No input sanitization or validation logic is present.
Audit Metadata