Skills
skills/lkrdev/looker-embed-skills/embed-javascript-events-api/Gen Agent Trust Hub

embed-javascript-events-api

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as a technical guide for using the Looker Embed JavaScript API and SDK.
  • Origin Verification: The provided code examples include mandatory checks for event.origin and event.source when handling postMessage events, which is the industry standard for preventing cross-site scripting and unauthorized data access in iframe communication.
  • Dependencies: The skill references @looker/embed-sdk, which is the official, well-known library provided by Google/Looker for this purpose.
  • No Malicious Patterns: There are no signs of prompt injection, data exfiltration, obfuscation, or unauthorized command execution. The skill is purely educational and focuses on standard web development patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 12:22 AM