ui-ux-improve
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes results from web searches which could potentially contain malicious instructions intended to subvert the agent's behavior.\n
- Ingestion points: Data enters via the WebSearch tool when researching UI/UX trends and libraries (SKILL.md, Step 4).\n
- Boundary markers: The agent is not instructed to disregard instructions found within the search results, and no delimiters are used to wrap this data.\n
- Capability inventory: The skill has read access to the project structure, the ability to invoke specialized subagents, and the capability to modify project files in 'implement' mode.\n
- Sanitization: External content from the web is not sanitized or validated before being included in the generated reports or implementation steps.
Audit Metadata