Skills
skills/fusengine/agents/shadcn-migration/Gen Agent Trust Hub

shadcn-migration

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [SAFE]: No evidence of malicious behavior, data exfiltration, or obfuscation was found in the skill or its reference materials.
  • [COMMAND_EXECUTION]: The skill uses Bash to manage Git branches and perform package management tasks (npm install, npm uninstall). These actions are standard for a migration workflow and align with the skill's stated purpose.
  • [EXTERNAL_DOWNLOADS]: The documentation provides instructions to install official React UI libraries from the npm registry, specifically @base-ui/react and various @radix-ui/react-* packages. These are well-known and trusted dependencies in the frontend ecosystem.
  • [DATA_INGESTION]: The skill identifies target components using Grep and Read operations on the local codebase. This is a routine part of a code transformation task and does not present an abnormal security risk in this context.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 11:02 AM