gsap-animation
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): The files contain standard documentation and code examples. There are no attempts to override system prompts, bypass safety filters, or use role-play for jailbreaking.
- [Data Exposure & Exfiltration] (SAFE): No sensitive file paths, hardcoded credentials, or unauthorized network operations were identified. The network mentions are limited to standard video resolutions and format conventions.
- [Obfuscation] (SAFE): All text and code blocks are transparent and human-readable. No Base64 encoding, zero-width characters, or homoglyphs were found.
- [Unverifiable Dependencies & RCE] (SAFE): The skill references established libraries (GSAP and Remotion). There are no commands for downloading or executing remote scripts (e.g., curl | bash).
- [Privilege Escalation & Persistence] (SAFE): No commands involving elevated privileges (sudo) or persistence mechanisms (cron jobs, startup scripts) are present.
- [Indirect Prompt Injection] (SAFE): The skill provides static templates and logic for video generation. It does not ingest or process untrusted external data that could influence the agent's behavior maliciously.
- [Dynamic Execution] (SAFE): The provided TSX snippets use standard React hooks and GSAP methods. There is no use of eval(), exec(), or unsafe deserialization.
Audit Metadata