generative-ui
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns detected. The skill consists of documentation, architectural patterns, and integration guides for the json-render generative UI framework.
- [NO_CODE]: The skill contains only markdown documentation and metadata. There are no executable scripts or active code components provided within the skill files.
- [EXTERNAL_DOWNLOADS]: The documentation references an ecosystem of vendor-managed packages under the
@json-render/namespace (including react, shadcn, react-native, remotion, react-email, and image). These are standard dependencies for the described framework and originate from the skill author's infrastructure. - [PROMPT_INJECTION]: The skill explicitly instructs the AI to follow a 'Generative UI' pattern which mitigates risks of code injection by restricting AI output to structured JSON data constrained by strict component catalogs and Zod validation schemas, rather than allowing arbitrary JSX or JavaScript generation.
Audit Metadata