mobile-design
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a local utility script,
scripts/mobile_audit.py, which is designed to perform static analysis on mobile application code (React Native, Flutter). It scans for common performance bottlenecks and UX anti-patterns, such as incorrect list rendering or insecure token storage. The script uses standard libraries and performs no network or file-write operations. - [PROMPT_INJECTION]: The instructions in
SKILL.mdandmobile-design-thinking.mdemploy strong directives (e.g., 'ANTI-MEMORIZATION', 'FORBIDDEN LIST') to guide the AI agent's reasoning process. These patterns are intended to optimize the agent's output for mobile-specific constraints rather than bypassing safety protocols or extracting system information. - [EXTERNAL_DOWNLOADS]: The documentation provides a reference to a public GitHub repository for source transparency. No automated remote code downloads or unauthorized script executions from external sources are present.
- [DATA_EXFILTRATION]: No evidence of hardcoded credentials or data exfiltration mechanisms was found. The skill specifically includes guidance for developers to avoid hardcoding secrets and to use secure storage mechanisms like Keychain or EncryptedSharedPreferences.
Audit Metadata