mcp-visual-output
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions and code examples do not contain any malicious patterns like prompt injection, data exfiltration, or unauthorized command execution.
- [SAFE]: The skill includes dedicated security rules for configuring sandboxed iframes and restrictive Content Security Policies (CSP), explicitly advising against dangerous settings like 'unsafe-inline'.
- [SAFE]: All referenced Node.js packages and repositories are legitimate tools for MCP and UI development, with the primary library managed by a trusted organization.
- [SAFE]: No obfuscation, persistence mechanisms, or privilege escalation attempts were found in any of the skill files.
Audit Metadata