Skills
skills/wundercorp/contrast-guard-skill/contrast-guard/Gen Agent Trust Hub

contrast-guard

Pass

Audited by Gen Agent Trust Hub on Jun 2, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill operates as a UI legibility specialist, enforcing WCAG contrast standards through automated checks and documentation generation.
  • [COMMAND_EXECUTION]: Provides scripts (check-contrast-guard.mjs, contrast-guard.mjs) to audit source code and generate theme documentation. These operations are local to the project repository and aligned with the skill's purpose.
  • [SAFE]: Includes a shell script (install-contrast-guard-hooks.sh) that installs a Git hook to automate contrast checks. This is a standard developer workflow enhancement and is explicitly documented.
  • [PROMPT_INJECTION]: The skill has an indirect injection surface. 1. Ingestion points: scripts/check-contrast-guard.mjs reads project text files. 2. Boundary markers: Absent. 3. Capability inventory: scripts/contrast-guard.mjs writes files and scripts/install-contrast-guard-hooks.sh modifies Git hooks. 4. Sanitization: Absent. The risk is minimal as the primary output is design-related documentation.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 2, 2026, 02:43 PM
Security Audit — agent-trust-hub — contrast-guard