Skills
skills/ajianaz/skills-collection/shadcn-svelte-management/Gen Agent Trust Hub

shadcn-svelte-management

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION] (SAFE): The skill references standard development commands such as npm install and npx shadcn-svelte@latest. These are essential for the primary purpose of the skill and target well-known, reputable packages.
  • [EXTERNAL_DOWNLOADS] (SAFE): Dependencies like @skeletonlabs/skeleton and @melt-ui/svelte are pulled from the official npm registry. These are widely used, open-source libraries within the Svelte ecosystem.
  • [REMOTE_CODE_EXECUTION] (SAFE): While npx executes remote code, it is restricted to the shadcn-svelte package, which is the standard deployment method for this tool and does not indicate malicious intent.
  • [DATA_EXFILTRATION] (SAFE): There are no patterns suggesting the access of sensitive system files (~/.ssh, .env, etc.) or the transmission of data to external, non-whitelisted domains.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 09:22 PM