skills/syncfusion/spreadsheet-editor-sdk-skills/syncfusion-react-spreadsheet-editor/Gen Agent Trust Hub
syncfusion-react-spreadsheet-editor
Fail
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE]: The skill is authored by Syncfusion Inc and serves as a documentation and code-generation assistant for their official React Spreadsheet component.
- [SAFE]: Network requests for spreadsheet operations like opening and saving files are directed to verified Syncfusion endpoints (document.syncfusion.com), which are trusted infrastructure for the component's functionality.
- [DATA_EXFILTRATION]: Automated scans detected the URL 'https://your-api-endpoint.com/sales'. Analysis reveals this is a non-functional placeholder domain used in documentation snippets to demonstrate remote data binding and is not a malicious exfiltration channel.
- [PROMPT_INJECTION]: The skill handles external data files (Excel/CSV), which is a common surface for indirect prompt injection. This is mitigated by the skill's operational rules which mandate that the agent must request and receive user confirmation of a delivery method before producing any code or performing file operations.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata