vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references several widely used and trusted npm packages, such as 'swr', 'lru-cache', and 'better-all', as part of its architectural recommendations for performance optimization.
- [EXTERNAL_DOWNLOADS]: Contains links to official documentation and technical blogs from established organizations including Vercel, the React team, and Next.js.
- [DATA_EXPOSURE]: Describes patterns for accessing client-side storage (localStorage and document.cookie) for theme management and performance caching. These operations are limited to the local environment and do not involve external data transmission.
- [COMMAND_EXECUTION]: Recommends the use of the 'svgo' command-line utility for local asset optimization. This is presented as a developer tool recommendation and does not involve automated or remote execution.
- [DYNAMIC_EXECUTION]: Includes a legitimate use of 'dangerouslySetInnerHTML' to inject a static, hardcoded script for theme synchronization during hydration. This is a standard industry practice to prevent UI flickering and does not process untrusted data.
Audit Metadata