react-doctor
Warn
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: MEDIUMREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill instructs the agent to run 'npx -y react-doctor@latest', which downloads and executes code from the npm registry without version pinning. This can lead to the execution of unverified or potentially malicious code if the package is compromised or updated with malicious intent.
- [EXTERNAL_DOWNLOADS]: The skill fetches the 'react-doctor' package from the public npm registry at runtime.
- [COMMAND_EXECUTION]: The skill uses shell commands via 'npx' to perform its codebase analysis.
- [PROMPT_INJECTION]: The skill's primary function involves scanning the codebase for diagnostics, which represents a surface for Indirect Prompt Injection (Category 8). Malicious instructions embedded in code comments or strings within the processed project could influence the agent's actions. Evidence: 1. Ingestion points: local codebase (.). 2. Boundary markers: absent. 3. Capability inventory: command execution via npx. 4. Sanitization: absent.
Audit Metadata