threejs
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): Extensive review of all 17 files, including references for loaders, materials, and physics, shows no malicious intent or security vulnerabilities. All code snippets utilize standard Three.js APIs for graphics rendering.
- [NO_CODE] (INFO): The skill contains only documentation and template snippets; it does not include executable scripts (like .py or .js files) that run on the host system beyond the agent's interpretation of the markdown.
- [EXTERNAL_DOWNLOADS] (INFO): While the skill discusses loading external 3D assets (GLTF, textures), it uses placeholders (e.g., 'model.gltf') and does not provide hardcoded malicious URLs. This is standard behavior for a 3D graphics library.
Audit Metadata