static-web-artifacts-builder
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed to facilitate the creation of self-contained HTML visualizations. Its operations are entirely local, and it follows security best practices by including a validation script that discourages the use of external CDNs or remote resources.
- [COMMAND_EXECUTION]: The shell scripts
init-artifact.shandbundle-artifact.shperform routine file system operations such as directory creation, file copying, and static analysis usinggrep. These actions are restricted to the local workspace and do not present command injection or privilege escalation risks. - [EXTERNAL_DOWNLOADS]: The skill explicitly mandates the avoidance of external resource downloads. The validation script actively checks for and warns against the inclusion of external scripts, stylesheets, and fonts, ensuring the privacy and integrity of the resulting artifacts.
Audit Metadata