syncfusion-blazor-maps
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves map tiles from well-known providers such as OpenStreetMap (tile.openstreetmap.org) and fetches geographic data (GeoJSON) from the official Syncfusion CDN (cdn.syncfusion.com). These operations are standard for a map visualization component.
- [REMOTE_CODE_EXECUTION]: The documentation provides instructions to install the 'Syncfusion.Blazor' NuGet package from the official registry. This is the legitimate vendor library required to use the component.
- [DATA_EXFILTRATION]: The skill includes functionality for exporting maps to image and PDF formats. The documentation mitigates exfiltration risks by providing secure implementation patterns, including user authorization checks and audit logging for export operations.
- [PROMPT_INJECTION]: The skill explicitly identifies the risk of indirect prompt injection and cross-site scripting (XSS) via map tooltips and annotations. It provides comprehensive remediation guidance, such as using HTML encoding and the HtmlSanitizer library to secure user-controlled content.
Audit Metadata