yy-frontend-vue2-code-optimization
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions specify the use of shell commands
git diff --name-onlyandgit diff --cached --name-onlyto detect modified files within the repository. - [COMMAND_EXECUTION]: The skill attempts to use
npx prettier --write <target-file>to automatically format code according to project or fallback configurations. - [EXTERNAL_DOWNLOADS]: The use of
npx prettiermay trigger a download of theprettierpackage from the official npm registry if it is not already available in the local environment. This is a standard operation involving a well-known developer service. - [PROMPT_INJECTION]: The skill includes instructions to ignore files containing Vue3-specific patterns (like
<script setup>), which is a legitimate functional constraint and not a safety bypass attempt. - [SAFE]: The skill defines a clear 'Business Logic Protection' rule, explicitly stating it will not modify functional behavior or split components without user confirmation. It uses a tiered risk system (Green, Yellow, Red) to categorize optimizations and mandate user approval for all but purely additive documentation tasks.
Audit Metadata