syncfusion-javascript-splitter
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical documentation set for the
@syncfusion/ej2-layoutslibrary. All code samples, API references, and installation instructions are standard for web development and align with the stated purpose of the skill. - [DATA_EXPOSURE]: No hardcoded credentials or sensitive file paths were detected. The skill correctly identifies and documents standard web storage usage (localStorage) and state persistence features.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns or unverified external downloads were found. Dependencies listed (Syncfusion packages) are official vendor resources.
- [PROMPT_INJECTION]: No patterns associated with prompt injection or system prompt extraction were detected.
- [INDIRECT_PROMPT_INJECTION]: While the Splitter component handles HTML content, it includes a built-in HTML sanitizer (enabled by default) to prevent XSS. The documentation explicitly details how to manage and customize this security feature.
Audit Metadata