build
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill depends on official vendor packages (e.g.,
@cesdk/cesdk-js,@imgly/background-removal) and well-known libraries likeonnxruntime-webandvite. It also references templates and assets from the provider's official CDN (cdn.img.ly). These are standard resources for the SDK's intended functionality. - [COMMAND_EXECUTION]: The skill includes a local utility script
scripts/transpile-to-js.mjsthat the agent is instructed to run to convert TypeScript starter kits to JavaScript. This script performs standard file system operations (read, write, delete) within the target project directory to rename and transpile source files. - [DYNAMIC_EXECUTION]: Vite configuration files in the starter kits include dynamic
import()statements to load local plugins for development. This is a standard pattern for development environments and is gated by environment variables.
Audit Metadata