skills/syncfusion/react-ui-components-skills/syncfusion-react-markdown-converter/Gen Agent Trust Hub
syncfusion-react-markdown-converter
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides documentation and implementation examples for legitimate Syncfusion React components. All dependencies are official Syncfusion packages (@syncfusion/ej2-markdown-converter, @syncfusion/ej2-react-richtexteditor, @syncfusion/ej2-base, @syncfusion/ej2-react-layouts, @syncfusion/ej2-buttons, @syncfusion/ej2-inputs, @syncfusion/ej2-lists, @syncfusion/ej2-navigations, @syncfusion/ej2-popups, @syncfusion/ej2-splitbuttons, @syncfusion/ej2-richtexteditor, @syncfusion/ej2-layouts).\n- [PROMPT_INJECTION]: The skill describes a pattern for processing untrusted Markdown input that is converted to HTML and rendered. \n
- Ingestion points: Markdown content in SKILL.md, references/tohtml-api.md, and integration examples.\n
- Boundary markers: None present in the code snippets to distinguish data from instructions.\n
- Capability inventory: Capability to render HTML via dangerouslySetInnerHTML and innerHTML.\n
- Sanitization: The documentation in references/tohtml-api.md explicitly includes a security warning advising developers to sanitize HTML output when processing user-generated content from unknown sources.
Audit Metadata