skills/syncfusion/blazor-ui-components-skills/syncfusion-blazor-smart-rich-text-editor/Gen Agent Trust Hub
syncfusion-blazor-smart-rich-text-editor
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides legitimate documentation for integrating AI capabilities into Blazor applications using Syncfusion components. It correctly identifies security best practices, such as using environment variables or User Secrets for API keys instead of hardcoding credentials.\n- [PROMPT_INJECTION]: The component acts as a surface for indirect prompt injection by processing user-supplied content with AI models. This risk is addressed through the following architecture:\n
- Ingestion points: User content within the editor and prompts submitted via the AI Assistant popup.\n
- Boundary markers: Contextual information is automatically appended to prompts by the editor to guide AI behavior.\n
- Capability inventory: Supports HTML formatting, content retrieval, and network communication with configured AI backends.\n
- Sanitization: Employs a built-in HTML sanitizer enabled by default and provides events like AIPromptRequested for additional request validation.\n- [EXTERNAL_DOWNLOADS]: Functionality relies on official NuGet packages and scripts from trusted vendors and CDNs.
Audit Metadata