performance-review
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes standard browser APIs, such as PerformanceObserver and the Performance API, to capture performance metrics (LCP, CLS, INP) and evaluate resource loading behavior.
- [SAFE]: All measurement logic is transparently defined as JavaScript snippets to be executed within a browser session, with no evidence of obfuscation or hidden intent.
- [SAFE]: The skill adheres to best practices by saving reports and regression tests to a dedicated vendor directory (shiplight/), which is consistent with its stated purpose and organizational scope.
- [SAFE]: No external network requests to untrusted domains, unauthorized file system access, or credential harvesting patterns were identified.
- [SAFE]: The skill does not download or install external packages or remote scripts at runtime.
Audit Metadata