vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of Markdown-based documentation, templates, and technical guidelines for React and Next.js performance optimization. No malicious executable scripts or binary files are included.
- [EXTERNAL_DOWNLOADS]: The skill references well-known and trusted libraries and repositories, such as
lru-cache,better-all,swr, and Vercel's official documentation. These references are used for technical guidance and standard dependency recommendations. - [COMMAND_EXECUTION]: The documentation includes code snippets demonstrating how to use standard development tools like
pnpmandnpx svgo. These are illustrative examples for project setup and asset optimization. - [PROMPT_INJECTION]: No malicious prompt injection patterns or attempts to override agent behavior were found. The instructional text is consistent with technical documentation intended to guide code generation and refactoring.
- [DATA_EXFILTRATION]: No evidence of hardcoded credentials, sensitive file access, or unauthorized network operations was detected. The skill includes a specific rule ('server-auth-actions.md') that provides security guidance to prevent unauthorized access to Server Actions.
Audit Metadata