ui-translation
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation of
@iress-oss/ids-componentsand@iress-oss/ids-tokens. These are legitimate packages associated with the '@iress-oss' scope, which belongs to the vendor 'iress'. - [PROMPT_INJECTION]: The skill processes untrusted natural language UI descriptions, which is an indirect prompt injection surface.
- Ingestion points: natural language descriptions (SKILL.md).
- Boundary markers: absent.
- Capability inventory: generation of React code; no file-write, network, or execution capabilities detected.
- Sanitization: absent. This surface is considered safe given the skill's primary purpose.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were identified in the skill files.
Audit Metadata