motion
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a legitimate developer utility for the Motion animation library. It includes well-documented React component templates and shell scripts for project initialization and optimization.
- [COMMAND_EXECUTION]: The provided scripts (
init-motion.shandoptimize-bundle.sh) perform standard project setup tasks such as installing packages via pnpm/npm/yarn and creating local boilerplate files. These operations are transparent, follow developer best practices, and do not involve suspicious remote execution or privilege escalation. - [EXTERNAL_DOWNLOADS]: All external references point to official documentation (
motion.dev), the official GitHub repository (motiondivision/motion), or the author's public issue tracker. These are well-known or trusted sources for technical documentation and library support. - [DATA_EXFILTRATION]: No patterns indicative of data exfiltration were found. There are no unauthorized network calls, and the scripts do not attempt to access sensitive files like credentials or environment variables.
- [PROMPT_INJECTION]: The skill instructions are focused entirely on technical implementation and troubleshooting. No attempts to override agent behavior or bypass safety filters were detected.
Audit Metadata