ux-ui-design
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill references established technology services and resources, such as Figma, Tailwind CSS, and Google Fonts, for design guidance and assets.
- [SAFE]: Included JavaScript templates utilize
textContentfor rendering dynamic data, following secure coding practices to mitigate potential cross-site scripting (XSS) in generated prototypes. - [SAFE]: Indirect prompt injection surface exists but is not exploitable:
- Ingestion points:
references/research-templates.mdandreferences/usability-testing-template.md(processes user research data). - Boundary markers: Not explicitly defined in templates.
- Capability inventory: No dangerous agent-side capabilities (e.g., command execution, file system modification) are utilized; the skill focuses on static content generation.
- Sanitization: JavaScript templates employ
textContentfor output sanitization.
Audit Metadata