skills/joyco-studio/skills/joyco-ui/Gen Agent Trust Hub

joyco-ui

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch documentation and component registry data from hub.joyco.studio. These external references are used to provide the most current component APIs and design guidelines. These resources are hosted on the vendor's official domain.
  • [COMMAND_EXECUTION]: The instructions include usage of the pnpm dlx shadcn command to add UI components to the project. This involves executing a well-known CLI tool and installing packages from the @joyco scope.
  • [SAFE]: No malicious patterns such as prompt injection, obfuscation, or unauthorized data exfiltration were detected. The activities described are consistent with the skill's purpose as a developer tool.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 01:38 AM
Security Audit — agent-trust-hub — joyco-ui