turborepo
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or obfuscation were detected across the skill files. The instructions focus on correct usage of the Turborepo CLI and configuration files.
- [SAFE]: External references point to official Turborepo documentation, Vercel services, and community-standard tools for monorepo management. All URLs were verified as legitimate.
- [SAFE]: Dependency management instructions (e.g., using
syncpack,manypkg, andsherif) follow industry standards for JavaScript monorepos and are aimed at maintaining repository health. - [SAFE]: Handling of sensitive data like environment variables and
.envfiles is documented with best-practice security patterns, such as usingglobalPassThroughEnvfor credentials to prevent them from being baked into build caches.
Audit Metadata