frontend
Fail
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches installation scripts for the
uvpackage manager fromastral.sh(a well-known technology service) and various developer tools likereact-scanandreact-grabfrom theunpkg.comCDN. - [REMOTE_CODE_EXECUTION]: The script
scripts/perfection/lighthouse-audit.pyprovides instructions to install theuvenvironment using acurl | shpattern. Additionally, the skill facilitates injecting remote JavaScript assets fromunpkg.cominto the user's project during development to enable instrumentation tools. - [COMMAND_EXECUTION]: The
lighthouse-audit.pyscript usessubprocess.runto manage global NPM dependencies (lighthouse,chrome-launcher) and to run Node.js scripts. The skill also requires executing multiplenpxcommands for project initialization and dev-tooling setup. - [DYNAMIC_EXECUTION]: In
scripts/perfection/lighthouse-audit.py, the skill dynamically generates a Node.js script in a temporary file and executes it via a subprocess to interface with the Lighthouse Node.js API. - [INDIRECT_PROMPT_INJECTION]: The skill is designed to ingest and process user-provided URLs for automated auditing, creating an attack surface where malicious content on the audited page could influence agent behavior.
- Ingestion points:
scripts/perfection/lighthouse-audit.pyaccepts a URL argument for auditing. - Boundary markers: Absent; there are no instructions to the auditing agent to ignore or delimit instructions found within the processed URLs.
- Capability inventory: The skill can execute shell commands (
subprocess.run), install packages (npm,npx), and inject scripts into browser contexts. - Sanitization: There is no evidence of URL validation or output sanitization before the URL is passed to the execution runners.
Recommendations
- HIGH: Downloads and executes remote code from: https://astral.sh/uv/install.sh - DO NOT USE without thorough review
Audit Metadata