iblai-agent-disclaimers

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the vendor's official CLI tools (iblai-app-cli and @iblai/cli) and fetches environment configuration templates from the vendor's GitHub repository.
  • [COMMAND_EXECUTION]: Uses standard development commands (pnpm dev, pip install, npm install) and automation tools (playwright) to set up and verify the application.
  • [DATA_EXFILTRATION]: Reads local configuration from iblai.env. This is used for application setup and is restricted to the local environment.
  • [PROMPT_INJECTION]: The skill renders user-provided content via Markdown (react-markdown). While this represents a potential surface for indirect prompt injection, it is a standard implementation for rich-text rendering in UI components.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 04:21 PM
Security Audit — agent-trust-hub — iblai-agent-disclaimers