architecture-diagram
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill processes user-supplied component names and descriptions to populate the HTML diagram, creating an indirect prompt injection surface.
- Ingestion points: User input for component titles and descriptions is extracted in the workflow (SKILL.md).
- Boundary markers: No specific delimiters or isolation instructions are defined for the user-supplied content.
- Capability inventory: The skill primarily performs file-write operations for the HTML output and includes instructions for Playwright CLI execution.
- Sanitization: The instructions do not specify sanitization or escaping of user input before interpolation into the HTML template.
- [COMMAND_EXECUTION]: The error handling documentation in SKILL.md suggests running 'playwright install chromium' to address potential rendering failures, involving the execution of a CLI tool.
- [EXTERNAL_DOWNLOADS]: The troubleshooting command 'playwright install chromium' downloads browser binaries from the official infrastructure of the Playwright project, a well-known service.
Audit Metadata