stream-react-native
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust documentation lookup system using
llms.txtmanifests. Access is strictly limited to the vendor's official domain (getstream.io) via theallowed-toolsconfiguration, ensuring the agent only interacts with trusted sources. - [SAFE]: Security instructions are provided to handle sensitive data responsibly, such as advising the use of the
streamCLI for credential management instead of hardcoding secrets into the application code. - [SAFE]: Project detection and setup commands (using
bash,npm,npx, andexpo) are standard for React Native development and are used appropriately within the context of scaffolding and configuring a chat application. - [SAFE]: No evidence of prompt injection, obfuscation, data exfiltration to third parties, or persistence mechanisms was found during the analysis.
Audit Metadata