Skills
skills/redpanda77/skills/designing-ui-layouts/Gen Agent Trust Hub

designing-ui-layouts

Warn

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The file references/complementary-skills.md recommends installing external extensions from unverified third-party GitHub repositories, specifically Leonxlnx/taste-skill and pbakaus/impeccable. These resources involve fetching remote code or configurations from sources outside of the predefined trusted organization list.
  • [REMOTE_CODE_EXECUTION]: The skill provides explicit shell commands for users to execute, such as npx skills add https://github.com/Leonxlnx/taste-skill and npx impeccable skills install. These commands download and run code from external third-party sources, which poses a risk of remote code execution if the target repositories are untrustworthy or become compromised.
  • [EXTERNAL_DOWNLOADS]: The skill correctly identifies and references resources from well-known and trusted entities, including Vercel Labs and Anthropic. These references are documented as standard extensions for the skill's auditing and design capabilities.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 17, 2026, 08:02 AM
Security Audit — agent-trust-hub — designing-ui-layouts