web-framework-react
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill provides legitimate React development patterns.
- [PROMPT_INJECTION]: No attempts to override agent behavior, bypass safety filters, or extract system prompts were found. The 'CRITICAL' sections are standard technical requirements for coding style.
- [DATA_EXFILTRATION]: No hardcoded credentials, sensitive file path access, or unauthorized network exfiltration patterns were detected. Code examples use standard React and browser APIs (like localStorage) appropriately for the described functionality.
- [REMOTE_CODE_EXECUTION]: No remote script downloads, piped shell execution, or unverifiable dependency installations were identified.
- [DYNAMIC_EXECUTION]: The skill does not use dangerous functions such as eval() or exec(), nor does it perform runtime code generation or unsafe deserialization.
- [DYNAMIC_CONTEXT_INJECTION]: No use of shell execution syntax via dynamic context injection markers (!
command) was found in the documentation.
Audit Metadata