expo-architect
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to automate the creation of mobile application projects using Expo and React Native. The logic is transparent and follows industry standard practices.
- [COMMAND_EXECUTION]: The skill executes a local Python script (
scripts/init-expo.py) to generate the application structure. The script implements a path validation check that restricts file creation to the current working directory unless the user explicitly provides an override flag. - [EXTERNAL_DOWNLOADS]: The generated
package.jsonfile includes dependencies on well-known, legitimate libraries such asexpo,react-native, andlucide-react-nativefrom the official npm registry. No suspicious remote code execution patterns or downloads from untrusted sources were found. - [CREDENTIALS_UNSAFE]: The skill provides templates for environment variables (
.env.example) and API client code that correctly use placeholders rather than hardcoding sensitive credentials or secrets.
Audit Metadata