wix-cli-site-component
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No patterns indicative of prompt injection, such as instructions to override safety filters or disregard previous constraints, were found.
- [DATA_EXFILTRATION]: The skill does not access sensitive local files (e.g., credentials, SSH keys) or perform unauthorized network operations. It explicitly prohibits the use of
window.fetchand mandates the use of local assets or trusted Wix domains for media. - [REMOTE_CODE_EXECUTION]: No logic for downloading or executing remote scripts or packages from untrusted sources was detected.
- [COMMAND_EXECUTION]: The skill does not involve the execution of shell commands or the creation of subprocesses. All instructions are focused on static code generation and project configuration.
- [SAFE]: The skill incorporates strong security guidelines, including ESLint rules that prevent common web vulnerabilities like Cross-Site Scripting (XSS) by prohibiting
dangerouslySetInnerHTMLand ensuring SSR compatibility.
Audit Metadata