wysiwyg-editor
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a WYSIWYG editor using the Tiptap library, which is a standard and well-regarded framework for building rich text editors in React applications.
- [SAFE]: The code demonstrates strong security awareness by utilizing DOMPurify to sanitize user-generated HTML content before rendering it. This effectively mitigates Cross-Site Scripting (XSS) risks associated with the use of
dangerouslySetInnerHTML. - [EXTERNAL_DOWNLOADS]: The skill documentation correctly guides the user to install well-known and reputable packages from the Tiptap ecosystem and DOMPurify via standard package managers. These resources are from established vendors and registries.
- [PROMPT_INJECTION]: No patterns associated with prompt injection, jailbreaking, or instruction override were detected in the skill's documentation or code logic.
- [DATA_EXFILTRATION]: No evidence of unauthorized data access, credential exposure, or external network calls to suspicious domains was found.
Audit Metadata