syncfusion-blazor-smart-paste
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The documentation provides clear and legitimate instructions for integrating a UI component intended for AI-powered form filling.
- [EXTERNAL_DOWNLOADS]: Fetches official NuGet packages from Microsoft, Azure, and Syncfusion for AI integration and UI styling.
- [SAFE]: Configuration examples use descriptive placeholders for API keys and endpoints, following secure development practices by avoiding hardcoded secrets.
- [COMMAND_EXECUTION]: Includes standard development commands for installing NuGet packages.
- [PROMPT_INJECTION]: The 'Smart Paste' feature processes clipboard content using AI, which is an indirect prompt injection surface. This is the primary intended functionality of the skill. Evidence: Ingestion points: Clipboard data via SfSmartPasteButton in Index.razor; Boundary markers: Not explicitly shown; Capability inventory: Form field population; Sanitization: Handled by the underlying component library.
Audit Metadata