unocss-shadcn
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill does not contain any malicious patterns or safety-violating instructions. All operations are designed for local project configuration.
- [COMMAND_EXECUTION]: Command recommendations are provided for manual execution by the user. Core Rule 1 explicitly states that the agent should not auto-install dependencies, maintaining a safe execution environment through human verification.
- [EXTERNAL_DOWNLOADS]: The skill references standard web development packages, including unocss, unocss-preset-shadcn, react, and react-dom. These are well-known resources within the ecosystem.
- [PROMPT_INJECTION]: No prompt injection or jailbreak attempts were found. The logic is strictly focused on framework-agnostic setup and monorepo detection rules.
- [DATA_EXFILTRATION]: No sensitive file access (e.g., SSH keys, credentials) or unauthorized network activity was detected. The skill only inspects standard project manifests like package.json and pnpm-workspace.yaml.
Audit Metadata