Skills
skills/get-convex/agent-skills/convex-create-component/Gen Agent Trust Hub

convex-create-component

Pass

Audited by Gen Agent Trust Hub on May 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses standard Convex CLI tools, including npx convex dev and npx convex codegen, to manage development and code generation within the application's environment.
  • [EXTERNAL_DOWNLOADS]: Instructions reference official and well-known ecosystem packages such as @convex-dev/auth, convex-helpers, and convex-test to implement authentication, utility functions, and testing.
  • [REMOTE_CODE_EXECUTION]: The skill recommends bootstrapping components via npx create-convex@latest, which is the official initialization method provided by the framework vendor.
  • [SAFE]: Code templates and guidelines explicitly instruct users to handle sensitive operations—such as authentication and environment variable access (e.g., OPENAI_API_KEY)—at the application level rather than within internal components, ensuring proper security boundaries.
Audit Metadata
Risk Level
SAFE
Analyzed
May 1, 2026, 04:55 AM