json-render-catalog
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical reference for implementing generative UI safely using the json-render framework. It provides detailed guides for integrating with multiple frontend ecosystems (React, Vue, Svelte, React Native, etc.).
- [SAFE]: High emphasis on security via Zod schema validation. The rules (e.g., in
rules/prop-constraints.md) explicitly instruct the AI to use tight constraints like.max(),.min(), andz.enum()to prevent hallucination and layout-breaking outputs. - [SAFE]: Interactivity and state management are handled through structured 'actions' (e.g.,
setState,load_data) rather than allowing the AI to generate arbitrary executable code. - [SAFE]: All external links and package references are directed at legitimate technical documentation, public GitHub repositories of the framework's author, or official package registries.
- [SAFE]: The skill uses 'boundary markers' (catalogs) as a primary security feature to define the contract between AI generation and UI rendering.
Audit Metadata