Skills
skills/marcioaltoe/skills/ui-ux-pro-max/Gen Agent Trust Hub

ui-ux-pro-max

Warn

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on the execution of a local Python script located at skills/ui-ux-pro-max/scripts/search.py. This script is called with various arguments to generate design systems and perform searches.
  • [COMMAND_EXECUTION]: The documentation instructs the agent to use elevated privileges, specifically sudo apt update && sudo apt install python3, for dependency installation on Linux systems. This pattern involves privilege escalation and allows the skill to modify system-level configurations.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because user-supplied strings (such as product types and keywords) are interpolated directly into shell command arguments for the search.py script without validation or escaping.
  • Ingestion points: User input for search queries and project names provided in SKILL.md.
  • Boundary markers: None identified.
  • Capability inventory: Execution of local Python scripts via shell commands.
  • Sanitization: None identified.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 17, 2026, 07:26 PM
Security Audit — agent-trust-hub — ui-ux-pro-max