Skills
skills/alauda/agent-skills/ui-development-react/Gen Agent Trust Hub

ui-development-react

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The utility scripts design-tokens-converter.py and design-validator.py utilize the os.execv function within a helper called _activate_project_venv. This function is designed to automatically transition the script execution to a local Python virtual environment (.venv) to ensure dependency consistency.
  • [EXTERNAL_DOWNLOADS]: Documentation within the skill points to well-known third-party accessibility auditing tools such as WebAIM, Axe DevTools, and the WAVE browser extension to facilitate manual accessibility verification.
  • [SAFE]: The design validator script (design-validator.py) implements a data ingestion surface by scanning local source code for design system compliance.
  • Ingestion points: Local files provided via the --path argument.
  • Boundary markers: None present.
  • Capability inventory: The script is limited to file system reading and path traversal using Path.rglob.
  • Sanitization: Ingested data is processed using regular expression pattern matching and is not executed or evaluated as code.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 04:13 AM