javascript-conventions
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill contains benign documentation and instructional guidelines for maintaining a consistent JavaScript/TypeScript development environment.
- [PROMPT_INJECTION]: No evidence of prompt injection, instruction overrides, or attempts to bypass safety filters was found in any of the analyzed files.
- [DATA_EXFILTRATION]: No sensitive data access (e.g., credentials, environment variables, or private keys) or network exfiltration patterns were identified. The instructions do not involve any network operations to untrusted domains.
- [REMOTE_CODE_EXECUTION]: The skill does not perform or encourage the execution of untrusted remote code. References to package managers (
pnpm) and common development tools (vite,eslint,prettier) are standard and safe practices for the intended use case. - [OBFUSCATION]: No hidden content, encoded strings, or other obfuscation techniques (such as zero-width characters or homoglyphs) were detected.
- [COMMAND_EXECUTION]: The skill references standard package management commands (e.g.,
pnpm install,pnpm add). There is no evidence of dangerous shell command execution or privilege escalation.
Audit Metadata