Skills
skills/inference-skills/skills/landing-page-design/Gen Agent Trust Hub

landing-page-design

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the belt CLI tool to execute specific applications for generating hero images and performing competitor research (e.g., falai/flux-dev-lora, tavily/search-assistant). These commands are constrained to the scoped operations allowed for the belt tool.\n- [EXTERNAL_DOWNLOADS]: Includes instructions for the user to install the belt CLI skill (belt-sh/cli) and provides links to setup documentation on the vendor's GitHub repository (github.com/inference-sh). These downloads are necessary for the skill's primary functionality and originate from the author's infrastructure.\n- [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection by retrieving content from external websites via search tools.\n
  • Ingestion points: Market research data from tavily/search-assistant and exa/answer calls in SKILL.md.\n
  • Boundary markers: Absent; there are no specific delimiters or instructions for the agent to treat search results as untrusted content.\n
  • Capability inventory: Restricted to the belt CLI ecosystem; the skill does not have permissions for arbitrary shell execution, sensitive file access, or broad network operations beyond the tool's scope.\n
  • Sanitization: No explicit sanitization or filtering of external search results is performed before they are processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 04:49 PM
Security Audit — agent-trust-hub — landing-page-design