generating-ui-bundle-metadata
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Salesforce CLI ('sf template generate') to scaffold new project structures. This is a standard administrative command for the Salesforce platform.
- [SAFE]: The skill provides explicit path safety rules for configuration files, such as rejecting directory traversal patterns (e.g., '..'), backslashes, and null characters. This ensures that the agent handles project configuration data securely.
- [SAFE]: It references several well-known external domains (e.g., Unsplash, Google Fonts, Open-Meteo) specifically as examples for setting up Content Security Policy (CSP) metadata, which is a standard security practice.
Audit Metadata