bulk-import

Pass

Audited by Gen Agent Trust Hub on Jun 12, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes @subframe/cli using npx to manage the batch upload of design files to the vendor platform.
  • [EXTERNAL_DOWNLOADS]: The @subframe/cli package is retrieved from the official npm registry at runtime, which is standard behavior for this vendor-provided utility.
  • [DATA_EXFILTRATION]: UI components and configuration files are uploaded to the Subframe platform (app.subframe.com), which is the intended destination for the service's functionality.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 12, 2026, 10:36 PM
Security Audit — agent-trust-hub — bulk-import