iblai-vibe-component

Pass

Audited by Gen Agent Trust Hub on Jul 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches environment templates and brand guidelines from the author's official GitHub repository (iblai/vibe). These are trusted resources for the skill's intended purpose.
  • [COMMAND_EXECUTION]: Instructions include scaffolding new applications using git clone from a trusted vendor repository and installing dependencies via pnpm install. The skill specifically recommends using the --ignore-scripts safety flag to prevent the execution of potentially malicious lifecycle scripts during installation.
  • [COMMAND_EXECUTION]: The skill integrates with the well-known shadcn CLI to install UI blocks from shadcnspace.com, which is a recognized and common workflow in modern web development.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 7, 2026, 01:01 PM
Security Audit — agent-trust-hub — iblai-vibe-component