ai-elements
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a documentation and reference guide for a React UI component library. Analysis of the provided files reveals no malicious instructions, obfuscation, or unauthorized data access patterns.
- [EXTERNAL_DOWNLOADS]: The installation instructions utilize standard package managers (Bun) to fetch components and dependencies from public registries. It also references external endpoints for model provider logos (models.dev) and a Model Context Protocol (MCP) registry (registry.ai-sdk.dev), both of which are consistent with the skill's stated purpose of facilitating AI development.
- [CREDENTIALS_UNSAFE]: The documentation includes configuration examples for API keys (e.g., ANTHROPIC_API_KEY). These are provided as placeholders (e.g., 'your_key_here') for the developer to fill in, which is standard practice for integration guides and does not constitute a credential leak.
- [COMMAND_EXECUTION]: While the skill contains shell commands for installation and setup (e.g., bunx, bun add), these are standard development workflows for the target audience of software engineers and do not perform any hidden or destructive operations.
Audit Metadata