mf-integrate
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references a demo manifest hosted on unpkg.com, a well-known and trusted CDN for NPM packages. This is used solely for demonstration purposes as part of the integration process.- [COMMAND_EXECUTION]: Executes standard package management commands (e.g., pnpm add, npm create) to install plugins from the @module-federation organization, which is the vendor of this skill. This is the intended behavior for scaffolding and dependency management.- [SAFE]: No malicious patterns such as prompt injection, data exfiltration, or obfuscation were detected. The file modifications are restricted to project configuration and source files necessary for the stated purpose of the skill. All operations trace back to the vendor's own infrastructure or established developer services.
Audit Metadata