nitro-fetch
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as documentation for the react-native-nitro-fetch suite of libraries. All external references and package links point to the official GitHub repositories and documentation sites of the authoring organization (Margelo).
- [COMMAND_EXECUTION]: The instructions include standard developer commands for package installation via npm and native project builds using CocoaPods and Gradle, which are appropriate for the skill's stated purpose.
- [DATA_EXFILTRATION]: The library facilitates network communication via HTTP and WebSockets. Examples use documentation-standard domains (e.g., example.com) and include a NetworkInspector utility for local traffic monitoring, which is a standard development feature.
- [CREDENTIALS_UNSAFE]: The skill discusses authentication token management and provides a mechanism for token refreshing during app cold starts, utilizing the library's secure storage integration. No hardcoded secrets or insecure credential handling patterns were detected.
Audit Metadata