visual-designing
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill contains shell scripts (
init-artifact.sh,bundle-artifact.sh) that automate the setup and build process for React applications. These scripts perform routine tasks such as directory creation, file modification viased, and running build commands. - [EXTERNAL_DOWNLOADS] (SAFE): The automation scripts facilitate the installation of common, well-known web development libraries (e.g., Vite, Tailwind, Radix UI) from the official NPM registry using
pnpm. No suspicious or unverified third-party domains were detected. - [DYNAMIC_EXECUTION] (SAFE): The
init-artifact.shscript utilizesnode -eto programmatically update local configuration files (tsconfig.json). This is a standard automation pattern for development environment configuration and does not involve executing untrusted remote code. - [DATA_EXPOSURE] (SAFE): No evidence of credential hardcoding, sensitive file path access, or unauthorized network exfiltration was found. The skill operates entirely within the scope of project initialization and bundling.
Audit Metadata