Skills
skills/involvex/skills/shadcn-ui/Gen Agent Trust Hub

shadcn-ui

Pass

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill follows established patterns for developer tooling and library integration.
  • [COMMAND_EXECUTION]: The skill executes standard project initialization and component management commands (e.g., npx shadcn@latest add) which are necessary for its primary function.
  • [EXTERNAL_DOWNLOADS]: Fetches component source code and dependencies from well-known official registries associated with shadcn/ui and Radix UI primitives.
  • [REMOTE_CODE_EXECUTION]: While the skill uses npx to run the shadcn CLI, this is an industry-standard method for component-based UI libraries and points to established official sources.
  • [DATA_EXFILTRATION]: No patterns of sensitive data access or exfiltration were found; network operations are limited to well-known component registries.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 26, 2026, 05:06 AM