tailwind
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks detected. The skill functions solely as a technical reference guide.
- [EXTERNAL_DOWNLOADS]: Documents installation procedures for standard CSS utilities from the official npm registry (tailwindcss, postcss, autoprefixer, etc.). All referenced domains and repositories are official project sites or well-known developer tools.
- [COMMAND_EXECUTION]: Provides standard package manager commands (npm, yarn, pnpm) for developer environment setup. These are descriptive and intended for manual execution by a developer during project initialization.
- [REMOTE_CODE_EXECUTION]: No remote code execution or piped shell commands from untrusted sources were found.
- [DATA_EXFILTRATION]: No network operations, credential harvesting, or sensitive file access patterns were identified.
- [PROMPT_INJECTION]: Instructions are focused on technical implementation and do not contain patterns attempting to bypass agent safety filters or override core behavior.
- [DYNAMIC_EXECUTION]: The skill documents standard plugin usage in Tailwind configuration (
require('tailwindcss/plugin')), which is a legitimate and expected pattern for this toolchain.
Audit Metadata