nextjs
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a technical reference for Next.js development. No malicious patterns, prompt injections, or obfuscation were detected.
- [DATA_EXFILTRATION]: Hardcoded credentials in
references/deployment.md(e.g.,DATABASE_URL,POSTGRES_PASSWORD) are clearly identified as placeholders in documentation and do not represent actual secrets. - [COMMAND_EXECUTION]: Shell commands provided for Vercel CLI, PM2, and Docker are standard development tools and are used appropriately within the context of deployment guidance.
- [EXTERNAL_DOWNLOADS]: The skill references standard NPM packages and a widely used GitHub Action for Vercel deployment (
amondnet/vercel-action). These are routine for modern web development. - [PROMPT_INJECTION]: The instructions are strictly technical and do not attempt to override agent safety protocols or bypass constraints.
- [DATA_EXPOSURE]: The skill encourages security best practices, such as sanitizing HTML before rendering with
dangerouslySetInnerHTMLand using environment variables for sensitive configuration.
Audit Metadata