copilotkit-agui
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Technical Knowledge Base. The skill acts as a documentation repository for the AG-UI protocol, containing event specifications, architectural diagrams, and step-by-step integration guides. No executable code or shell commands are included outside of standard development templates.
- [SAFE]: Vendor Resource Alignment. All referenced NPM packages (@ag-ui/core, @ag-ui/client, @ag-ui/encoder) and documentation sources are part of the author's (CopilotKit) official ecosystem and correspond to the skill's stated purpose.
- [SAFE]: Secure Template Practices. Code examples follow industry best practices by using descriptive placeholders for sensitive values such as API keys and authorization tokens (e.g., 'Bearer sk-...') rather than hardcoding actual credentials.
- [SAFE]: Protocol Security Features. The protocol specification includes support for encrypted reasoning values (Zero Data Retention), indicating that the underlying architecture is designed with privacy and data security in mind.
Audit Metadata