shadcn-impl-form-validation

Pass

Audited by Gen Agent Trust Hub on Jun 28, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides standard documentation and code examples for web development. No malicious patterns were identified during the analysis.
  • [PROMPT_INJECTION]: No evidence of instructions intended to override AI safety or behavior was found in the documentation or code snippets.
  • [DATA_EXFILTRATION]: The code samples use local API endpoints (e.g., /api/sign-in) for demonstration purposes and do not attempt to exfiltrate data to external or untrusted domains.
  • [REMOTE_CODE_EXECUTION]: No use of dangerous functions like eval(), exec(), or remote script execution via curl/wget was identified.
  • [INDIRECT_PROMPT_INJECTION]: Evaluated as safe. 1. Ingestion points: User input in forms (SKILL.md, references/examples.md). 2. Boundary markers: Explicit zod schemas and react-hook-form validation are used to delimit data. 3. Capability inventory: Internal network requests (fetch) and form state management. 4. Sanitization: Strong schema validation via zod and type-safe handling with TypeScript.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 28, 2026, 03:40 PM
Security Audit — agent-trust-hub — shadcn-impl-form-validation