sapui5
Pass
Audited by Gen Agent Trust Hub on Jun 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill integrates with the official SAP Model Context Protocol (MCP) server, specifically
@ui5/mcp-server@0.2.11, which is fetched from the official npm registry. This is a standard and safe practice for extending agent capabilities with verified tools from established technology providers like SAP. - [COMMAND_EXECUTION]: The skill facilitates the use of standard development tools, including the UI5 CLI (
ui5 serve,ui5 build,ui5 lint) and the MCP server. these tools are used exclusively for project scaffolding, code quality analysis, and development server management within the context of SAPUI5 development. - [SAFE]: The skill provides detailed guidance on secure coding practices, including XSS prevention, Content Security Policy (CSP) implementation, and CSRF protection. The bundled templates and reference materials follow official SAP recommendations, and no malicious patterns or safety filter bypass attempts were detected.
Audit Metadata