syncfusion-winforms-ui-builder

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides a well-documented and structured development workflow for creating .NET WinForms applications using verified Syncfusion components.
  • [COMMAND_EXECUTION]: The skill instructs the agent to use local CLI tools such as dotnet and node to manage project files and execute the provided controls_search.cjs script. These actions are standard for development environments and are performed on local project artifacts.
  • [EXTERNAL_DOWNLOADS]: The workflow facilitates the installation of official Syncfusion NuGet packages (e.g., Syncfusion.Core.WinForms, Syncfusion.SfDataGrid.WinForms) via the dotnet add package command. These resources are vendor-owned and sourced from well-known public registries.
  • [CREDENTIALS_UNSAFE]: The skill includes guidance on managing Syncfusion license keys, explicitly recommending secure storage in configuration files or environment variables rather than hardcoding them in the source code.
  • [DATA_EXFILTRATION]: No unauthorized network activity or data exfiltration patterns were detected. Network operations are limited to standard package management and documentation lookups.
  • [SAFE]: The provided Node.js script (controls_search.cjs) performs semantic searching of UI elements using a local BM25 algorithm. It operates entirely on local files (controls.csv, control-mapping.json) without external network dependencies or unsafe code execution (eval/exec).
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 07:41 AM
Security Audit — agent-trust-hub — syncfusion-winforms-ui-builder