x-card
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill consists of technical documentation, component specifications, and usage examples for a legitimate UI library.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@ant-design/x-cardnpm package and points to official documentation and catalogs ona2ui.org. These are expected resources for the skill's purpose and originate from well-known sources associated with the protocol. - [INDIRECT_PROMPT_INJECTION]: While the skill defines a surface for rendering UI based on agent-supplied commands, the protocol's design (using declarative JSON and predefined catalogs) acts as a security control, preventing arbitrary script execution through generated interfaces.
Audit Metadata