canvas-component-utils
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- SAFE (INFO): No malicious behavior, commands, or obfuscation detected. The file contains usage instructions and code examples for a UI utility library.
- Indirect Prompt Injection (INFO): 1. Ingestion points: text prop in FormattedText (SKILL.md). 2. Boundary markers: None mentioned in examples. 3. Capability inventory: HTML rendering (UI display). 4. Sanitization: Not specified in documentation. This identifies a standard surface for processing untrusted external content.
- External Dependency (INFO): The skill references the drupal-canvas package for utility imports in a standard development context.
Audit Metadata