kuikly-ui-framework
Warn
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill implements a mandatory 'automatic update mechanism' that instructs the agent to execute shell commands (
mkdir,cd,git clone) and local bash scripts (check-update.sh,update-repository.sh) every time the skill is invoked. - [EXTERNAL_DOWNLOADS]: The skill is designed to automatically download and sync code from a remote repository (
https://github.com/Tencent-TDS/KuiklyUI) to maintain a local library of documentation and source code. - [PROMPT_INJECTION]: The instructions include 'Highest Priority' rules that explicitly forbid the agent from using its own memory or training data ('禁止凭记忆写代码'), mandating a rigid consultation process that overrides the agent's default operational behavior.
Audit Metadata