stream-react-native

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill implements a robust documentation lookup system using llms.txt manifests. Access is strictly limited to the vendor's official domain (getstream.io) via the allowed-tools configuration, ensuring the agent only interacts with trusted sources.
  • [SAFE]: Security instructions are provided to handle sensitive data responsibly, such as advising the use of the stream CLI for credential management instead of hardcoding secrets into the application code.
  • [SAFE]: Project detection and setup commands (using bash, npm, npx, and expo) are standard for React Native development and are used appropriately within the context of scaffolding and configuring a chat application.
  • [SAFE]: No evidence of prompt injection, obfuscation, data exfiltration to third parties, or persistence mechanisms was found during the analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 06:25 PM
Security Audit — agent-trust-hub — stream-react-native