skills/mattgierhart/prd-driven-context-engineering/prd-v04-visual-prototype-gate/Gen Agent Trust Hub
prd-v04-visual-prototype-gate
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill is designed to transform structured design documentation (SCR-, PER-, UJ- entries) into formatted text prompts for UI generation.
- [DATA_EXFILTRATION]: The skill does not perform any network operations. It reads local files and produces text output or templates within the local environment.
- [REMOTE_CODE_EXECUTION]: There are no patterns involving the download or execution of remote scripts or binaries. The skill uses standard agent tools (Read, Write, Edit) for document processing.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or sensitive configuration files are accessed or referenced.
- [COMMAND_EXECUTION]: The skill does not invoke shell commands or interact with the operating system beyond basic file operations.
- [INDIRECT_PROMPT_INJECTION]: While the skill ingests external data from the project's 'Source of Truth' files, it lacks dangerous capabilities (like code execution or network requests) that could be exploited via malicious content in those files. The output is intended for human-in-the-loop copying and pasting.
Audit Metadata