svar-svelte
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists exclusively of reference documentation (Markdown files) for the
@svar-ui/svelte-*suite of UI components. It does not include any executable scripts or automation logic that could perform unauthorized actions. - [SAFE]: All referenced Node.js packages belong to the
@svar-uinamespace, which is consistent with the skill's authoring context ('svar-widgets'). No suspicious or typosquatted dependencies were found. - [SAFE]: External URLs found in the documentation (e.g.,
cdn.svar.devfor icons andexample.complaceholders) are standard for developer documentation and do not point to untrusted or malicious domains. - [SAFE]: No patterns associated with prompt injection, data exfiltration, or persistence mechanisms were detected. Instructional text (e.g., 'Important CSS variables') is used correctly for documentation purposes and does not attempt to override agent safety protocols.
- [SAFE]: The documentation for sensitive features, such as
FilterQueryorGriddata export, includes appropriate implementation notes regarding security best practices (e.g., only usinggetQueryHtmlin trusted contexts).
Audit Metadata