The Agent Skills Directory

[SAFE]: The skill is designed for static code generation and does not utilize any tools that permit file system modification, network access, or shell execution.
[DATA_EXPOSURE_EXFILTRATION]: No hardcoded credentials, sensitive file paths, or data transmission patterns were identified in the instructions or sub-skill modules.
[INDIRECT_PROMPT_INJECTION]: The skill uses the $ARGUMENTS placeholder in SKILL.md to ingest user requirements. While this allows untrusted data to enter the prompt, the skill possesses no exploitable capabilities (such as code execution or API calls) that could be leveraged by an attacker. The risk is limited to the integrity of the generated boilerplate code.
Ingestion points: SKILL.md via $ARGUMENTS
Boundary markers: Not present
Capability inventory: None (the skill only outputs text and code blocks)
Sanitization: Not present

frontend-mobile-development-component-scaffold