use-dom
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely educational and provides guidelines for using a native framework feature. No security issues such as prompt injection, data exfiltration, or unauthorized command execution were found.
- [PROMPT_INJECTION]: The skill documents components that process external data (e.g., CodeBlock accepts a code prop, RichEditor accepts initialContent), representing a surface for indirect prompt injection or XSS.
- Ingestion points: Props such as data, code, initialContent, and markers in SKILL.md snippets.
- Boundary markers: None explicitly defined in the examples to delimit or ignore instructions within untrusted content.
- Capability inventory: The skill facilitates UI rendering within an isolated webview environment; it does not include subprocess calls, file-system access, or network operations in its scripts.
- Sanitization: While the components render data in a DOM environment, they rely on standard libraries like Tiptap and highlight.js which manage content rendering. No explicit sanitization logic is provided in the examples, which is common for documentation focused on framework usage.
Audit Metadata