syncfusion-vue-license
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for users to execute commands in their terminal, such as
npx syncfusion-license activate. This command downloads and runs a package from the npm registry to validate licensing. This is a standard vendor-provided utility for the stated purpose. - [COMMAND_EXECUTION]: The skill recommends modifying shell profile files (e.g.,
~/.bash_profile) to persist theSYNCFUSION_LICENSEenvironment variable. While modifying shell profiles can be a persistence mechanism, it is used here for a documented and legitimate configuration purpose. - [COMMAND_EXECUTION]: The instructions include commands to delete directories (e.g.,
rm -rf node_modules/.cache) to resolve licensing errors by clearing cached validation data. This is a routine development operation. - [EXTERNAL_DOWNLOADS]: The skill references several vendor-owned packages, including
@syncfusion/ej2-vue-grids,@syncfusion/ej2-vue-buttons, and thesyncfusion-licensetool. These are fetched from standard registries like npm during development or build processes.
Audit Metadata