syncfusion-react-autocomplete
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a comprehensive developer guide for the @syncfusion/ej2-react-dropdowns package. All code samples demonstrate standard React development patterns.
- [EXTERNAL_DOWNLOADS]: The documentation references official Syncfusion NPM packages and well-known sample data services (e.g., services.odata.org and services.syncfusion.com) for demonstration purposes. These are recognized technology services and do not pose a security risk.
- [DATA_EXFILTRATION]: No evidence of data exfiltration or credential harvesting was found. Remote data binding examples use generic placeholders or public sample endpoints.
- [COMMAND_EXECUTION]: In the templates documentation, one example uses
innerHTMLto update a footer element with a numeric count. WhileinnerHTMLis a potential XSS sink, its usage here is limited to displaying a length property (number), which is safe. - [PROMPT_INJECTION]: The instructions focus entirely on technical implementation and do not contain patterns intended to override agent behavior or bypass safety filters.
Audit Metadata