scan-frontend-patterns
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
greputility to scan project files for architectural patterns. This is a standard operation for codebase analysis and occurs entirely within the local environment.\n- [DATA_EXFILTRATION]: No network operations or data transmission patterns were detected. The skill's scope is restricted to reading and writing within the local project directory.\n- [PROMPT_INJECTION]: The skill processes source code to extract snippets for documentation, creating an indirect injection surface. This is documented as follows:\n - Ingestion points: The agent reads various frontend source files (e.g., .ts, .js, .tsx) and configuration files like package.json.\n
- Boundary markers: There are no explicit delimiters used to isolate processed code from agent instructions.\n
- Capability inventory: The skill is limited to reading files, writing to documentation paths, and using
grep.\n - Sanitization: Code snippets are included in the generated output without sanitization for embedded instructions.
Audit Metadata