ui
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill requests the
Bashtool to facilitate the automated installation ofshadcn/uicomponents, which is a standard development workflow. - [EXTERNAL_DOWNLOADS]: The skill references standard, well-known Node.js libraries including
motion/react,clsx, andtailwind-mergefor frontend implementation. - [PROMPT_INJECTION]: The skill contains logic for generating feedback forms, representing a potential surface for indirect prompt injection in the generated application. (1) Ingestion points: User input via forms (
references/feedback-forms.md). (2) Boundary markers: None specified. (3) Capability inventory:Bash,Read,Write,Edit. (4) Sanitization: No explicit instructions for input sanitization are provided. - [DATA_EXFILTRATION]: No evidence of unauthorized data access or exfiltration patterns was found.
Audit Metadata