fullstack-dev
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill provides extensive security guidance, such as avoiding hardcoded secrets, implementing proper authentication flows (JWT with refresh tokens), and using structured logging.
- [COMMAND_EXECUTION]: The skill includes instructions for common development tasks such as scaffolding projects, building applications, and running migrations (e.g.,
npm run build,prisma migrate). These are standard development workflows and are intended for the user's local environment. - [DATA_EXFILTRATION]: The skill explicitly advises against exfiltrating data or committing credentials, specifically mentioning the use of
.env.exampleto prevent secret exposure. - [EXTERNAL_DOWNLOADS]: The skill references standard package managers (npm, pip) and well-known developer tools (Prisma, Alembic, Docker) as part of best-practice checklists, which are safe for development contexts.
Audit Metadata