lifecycle/migrate-from-nextjs
Pass
Audited by Gen Agent Trust Hub on Jun 6, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install official packages from the @tanstack and vite ecosystems using npm. These are well-known, trusted, and standard dependencies for modern web development.
- [COMMAND_EXECUTION]: Provides standard shell commands for development workflows, including git branch management and package management operations (install/uninstall). No suspicious or high-privilege commands were identified.
- [PROMPT_INJECTION]: While the skill uses strong directives such as 'CRITICAL' in its formatting, these are used exclusively to emphasize important technical differences between the two frameworks (e.g., isomorphic code execution and server function syntax). They do not attempt to bypass AI safety filters or manipulate the agent's persona.
- [DATA_EXFILTRATION]: Code examples demonstrate database operations within server-side logic, which is standard functionality for the described framework. No evidence of hardcoded credentials or unauthorized data transmission to external domains was found.
Audit Metadata