ultimate-design-system-master

Pass

Audited by Gen Agent Trust Hub on May 2, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill consists entirely of Markdown files providing instructions and templates for creative work. It does not include any scripts, binary executables, or environment configuration files.
  • [PROMPT_INJECTION]: The prompts provided in the references/ directory use role-play (e.g., Apple Design Director) to set a specific professional tone. No adversarial patterns such as instructions to ignore safety filters, reveal system prompts, or bypass ethical guidelines were found.
  • [DATA_EXFILTRATION]: There is no usage of network tools (curl, wget, fetch) or access to sensitive local file paths (e.g., .ssh, .env). The briefing questionnaire gathers standard business information for the purpose of design generation.
  • [REMOTE_CODE_EXECUTION]: The skill does not define dependencies in package managers (npm, pip) and does not attempt to download or execute remote scripts. Although the 'Design-to-Code Translator' generates frontend code, this code is presented as static text for the user and is not executed by the agent.
  • [DYNAMIC_CONTEXT_INJECTION]: No shell command placeholders (using the !command syntax) were detected in any of the skill files.
Audit Metadata
Risk Level
SAFE
Analyzed
May 2, 2026, 06:21 AM
Security Audit — agent-trust-hub — ultimate-design-system-master