qwik
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as an educational and technical reference for the Qwik framework, providing code snippets for components, state management, and routing.- [COMMAND_EXECUTION]: Provides standard commands for project scaffolding and local development, such as
npm create qwik@latestandnpm run dev.- [DATA_EXPOSURE]: Illustrates secure handling of sensitive credentials (e.g.,STRIPE_SECRET_KEY) by demonstrating their retrieval from environment variables in server-side logic.- [DATA_EXPOSURE]: Includes a code example usingdangerouslySetInnerHTML. While a standard framework feature for rendering raw HTML, it represents a potential Cross-Site Scripting (XSS) surface if applied to unsanitized external content in production.
Audit Metadata