iblai-vibe-component
Pass
Audited by Gen Agent Trust Hub on Jul 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches environment templates and brand guidelines from the author's official GitHub repository (iblai/vibe). These are trusted resources for the skill's intended purpose.
- [COMMAND_EXECUTION]: Instructions include scaffolding new applications using
git clonefrom a trusted vendor repository and installing dependencies viapnpm install. The skill specifically recommends using the--ignore-scriptssafety flag to prevent the execution of potentially malicious lifecycle scripts during installation. - [COMMAND_EXECUTION]: The skill integrates with the well-known
shadcnCLI to install UI blocks fromshadcnspace.com, which is a recognized and common workflow in modern web development.
Audit Metadata