explainer-infographic
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill contains a strict 'no external dependencies' policy. It specifies that all fonts, SVGs, and JavaScript must be written inline or embedded within the final HTML output. This effectively mitigates risks associated with third-party resource loading and potential exfiltration via external CDNs.
- [PROMPT_INJECTION]: The skill processes user input for infographic topics, which constitutes an indirect prompt injection surface.
- Ingestion points: User-provided 'concept' and 'audience' descriptions in
SKILL.md. - Boundary markers: None; instructions do not define delimiters for user-provided data.
- Capability inventory: The agent is authorized to generate and save a single
.htmlfile containing functional JavaScript and SVG code. - Sanitization: Not explicitly required by the instructions; the skill relies on the agent's internal safety guardrails for code generation.
- [NO_CODE]: No executable scripts, binaries, or configuration files are distributed within the skill package. All logic is contained within the instructions for the agent.
Audit Metadata