Skills
skills/xiaolai/vmark/css-design-tdd/Gen Agent Trust Hub

css-design-tdd

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides several bash commands and scripts (e.g., css-quick-check.sh, css-full-audit.sh) intended for the agent to run locally. These commands perform static analysis on CSS files using grep, sed, sort, and comm to identify design system inconsistencies.
  • [DATA_EXPOSURE]: The skill uses the /tmp/ directory to store temporary text files (e.g., css-vars-used.txt, css-baseline.txt) during the audit process. This is a standard practice for temporary data processing and does not involve sensitive information.
  • [INDIRECT_PROMPT_INJECTION]: The skill reads and processes external CSS files. While this represents a potential ingestion point for untrusted data, the logic is limited to standard string matching and count operations, posing no significant risk of agent manipulation.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 01:47 AM