app-icon-generator

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute system utilities including swift for running generation scripts, sips for image manipulation, and xcodebuild for project verification.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface. Ingestion points: local project files (.planning/APP.md, Contents.json). Boundary markers: Absent. Capability inventory: Bash (swift, sips, xcodebuild), Write (icons, scripts). Sanitization: Absent. The risk is minimized because the ingested data is used only to determine visual parameters for the icon generation and not as executable instructions.
  • [SAFE]: The skill operates entirely within the local filesystem, using standard macOS developer tools and frameworks without any network communication, hardcoded credentials, or obfuscated code.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 05:18 PM
Security Audit — agent-trust-hub — app-icon-generator