app-icon-generator
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute system utilities including swift for running generation scripts, sips for image manipulation, and xcodebuild for project verification.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface. Ingestion points: local project files (.planning/APP.md, Contents.json). Boundary markers: Absent. Capability inventory: Bash (swift, sips, xcodebuild), Write (icons, scripts). Sanitization: Absent. The risk is minimized because the ingested data is used only to determine visual parameters for the icon generation and not as executable instructions.
- [SAFE]: The skill operates entirely within the local filesystem, using standard macOS developer tools and frameworks without any network communication, hardcoded credentials, or obfuscated code.
Audit Metadata