durable-ui
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill is entirely educational and pattern-based. No malicious instructions, obfuscation, or risky commands were found.
- [Data Exposure & Exfiltration] (SAFE): Documentation explicitly warns against storing PII or sensitive tokens in localStorage, promoting secure data handling practices.
- [Indirect Prompt Injection] (SAFE): Although the skill details how to read state from URL parameters, it does not provide any automated tools or dangerous capabilities that could be exploited via malicious inputs. The patterns rely on standard framework-safe data binding.
Audit Metadata