antd
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@ant-design/clipackage globally using npm to provide its core functionality. This is a vendor-owned resource. - [COMMAND_EXECUTION]: The skill frequently executes shell commands via the
antdCLI tool to query component data, lint source files, and analyze project structures. - [DATA_EXFILTRATION]: The
antd bugandantd bug-clicommands utilize a--submitflag to send data to external bug-tracking systems. To mitigate unauthorized data transfer, the skill requires the agent to preview the report and obtain explicit user confirmation before submission. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by ingesting and acting upon data from potentially untrusted sources.
- Ingestion points: Data enters the agent's context through the output of commands such as
antd info,antd demo,antd doc,antd usage, andantd lint(SKILL.md). - Boundary markers: No specific delimiters or safety instructions are used to separate ingested data from agent instructions.
- Capability inventory: The skill possesses shell execution capabilities for the
antdCLI and network access via bug reporting flags. - Sanitization: There is no documented validation or sanitization of the CLI output before it is processed by the agent.
Audit Metadata