Skills
skills/expo/skills/expo-examples/Gen Agent Trust Hub

expo-examples

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches example project files and configuration metadata from the official Expo examples repository on GitHub (github.com/expo/examples) via gh api and curl. These operations target the vendor's own public repositories.
  • [REMOTE_CODE_EXECUTION]: Employs npx create-expo and npx degit to download and initialize project templates directly from the official expo/examples repository. These are standard procedures for scaffolding Expo applications.
  • [COMMAND_EXECUTION]: Uses authorized shell tools including gh, git, and npx to perform repository lookups and project setup. The operations are scoped to project management and reference exploration.
  • [PROMPT_INJECTION]: Reads and processes external code files and READMEs. While reading untrusted data is a potential vector for indirect prompt injection, the risk is mitigated here as the source is the official, managed repository of the vendor.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 12:49 PM
Security Audit — agent-trust-hub — expo-examples