web-components
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill recommends using the 'servor' package in its 'Suggested scripts' section. While common for development, it is an external dependency not from a pre-verified trusted source.
- [PROMPT_INJECTION] (LOW): The skill creates an Indirect Prompt Injection surface. Evidence: 1. Ingestion points: The skill processes natural language descriptions of UI components. 2. Boundary markers: No explicit instructions are provided to sanitize or delimit untrusted data in generated components. 3. Capability inventory: The skill produces executable JavaScript code. 4. Sanitization: The guidelines explicitly suggest using 'setHTMLUnsafe()' which bypasses HTML sanitization, increasing the risk that malicious data processed by the generated code could result in Cross-Site Scripting (XSS).
Audit Metadata