pbi-mockup
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to automate the creation of UI mockups based on existing project documentation and source code. Its operations are localized to the project environment.
- [COMMAND_EXECUTION]: The skill utilizes tools such as
Bash,Glob, andGrepto discover project configuration files (docs/project-config.json), design system documentation, and existing frontend component templates. This is necessary for its goal of mimicking the project's current UI style. - [EXTERNAL_DOWNLOADS]: The generated HTML mockup includes a reference to Google Fonts (
fonts.googleapis.com). Google is a well-known service, and this reference is standard for web design purposes and does not represent a security risk. - [DATA_EXFILTRATION]: No exfiltration patterns were detected. The skill reads internal PBI and story artifacts to populate the mockup with realistic domain data, but the output is saved locally within the project directory.
Audit Metadata