tailwind-v4-shadcn
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard packages from the official npm registry such as tailwindcss, @tailwindcss/vite, and shadcn components. These are well-established and trusted in the web development ecosystem.
- [COMMAND_EXECUTION] (SAFE): Bash commands provided in documentation (e.g., npm install, grep) are standard for project setup and maintenance. No suspicious or hidden command execution patterns were found.
- [REMOTE_CODE_EXECUTION] (SAFE): The use of 'pnpm dlx shadcn' is the standard and recommended method for interacting with the shadcn/ui CLI to add components.
- [DATA_EXFILTRATION] (SAFE): There are no network requests to unknown domains or code that accesses sensitive system files like SSH keys or environment variables.
- [SAFE] (SAFE): The React templates (ThemeProvider, ModeToggle) and Vite configurations follow industry best practices for security and performance.
Audit Metadata