Oathe Security Badge

Is Masalale/awwwards-designer safe?

https://github.com/Masalale/awwwards-designer

89
SAFE

This web design skill contains concerning prompt injection elements that encourage bypassing approval processes and rapid execution without planning. However, it appears focused on legitimate web development tasks with no evidence of data exfiltration or malicious code execution.

Category Scores

Prompt Injection 65/100 · 30%
Data Exfiltration 100/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 85/100 · 5%

Findings (3)

MEDIUM Instructions to bypass approval processes -25

The skill contains explicit instructions to 'not get bogged down in bureaucratic processes, mandatory approval gates, or infinite planning loops' and to 'execute rapidly with high-quality code.' This could encourage the agent to bypass normal safety checks and user approval processes.

LOW Persona injection -10

The skill instructs the agent to adopt a specific persona as an 'elite design architect' which could override the agent's normal behavior patterns.

LOW Potential safety bypass through rapid execution -15

The emphasis on rapid execution without extensive planning could lead to the agent taking actions without proper user review, though the scope appears limited to web development tasks.