nextjs-modal-integration

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill defines Modal environment images that download standard Python packages from PyPI, including fastapi, torch, diffusers, and transformers. These are well-known libraries required for the stated purpose of AI inference and backend processing.
  • [COMMAND_EXECUTION]: Documentation provides standard CLI commands such as modal deploy for deploying the backend code to the Modal platform.
  • [DATA_EXFILTRATION]: The integration patterns facilitate sending application data from Next.js to Modal.run endpoints for processing. This is the intended primary function of the skill for offloading heavy compute tasks.
  • [CREDENTIALS_UNSAFE]: Example code includes the placeholder string your-secret-key. The skill explicitly provides instructions on best practices, warning users to never expose keys to the client and to use modal.Secret for production environments.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 03:39 AM
Security Audit — agent-trust-hub — nextjs-modal-integration