nextjs
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard boilerplate code and patterns for Next.js 15 development using the App Router and React 19 features.
- [EXTERNAL_DOWNLOADS]: Includes commands to initialize projects and install dependencies using standard package managers (npm, npx). These target well-known and official tools such as 'create-next-app', 'shadcn', and 'prisma'.
- [PROMPT_INJECTION]: No instructions were found that attempt to override agent behavior, bypass safety filters, or extract system prompts.
- [DATA_EXFILTRATION]: No evidence of hardcoded credentials, sensitive file access, or unauthorized network operations. Examples use the reserved 'example.com' domain for illustrative purposes.
- [COMMAND_EXECUTION]: Provides standard shell commands for project setup. No malicious command injection or unauthorized privilege escalation patterns (like sudo) are present.
- [DYNAMIC_EXECUTION]: The skill does not use dangerous functions like 'eval()' or 'exec()', and it explicitly recommends server-side validation and sanitization of user inputs.
Audit Metadata