web-server-state-react-query
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No instructions were found that attempt to override agent behavior, bypass safety guidelines, or extract system prompts. The instructional language is benign and focused on development patterns.
- [CREDENTIALS_UNSAFE]: No hardcoded secrets, API keys, or private tokens were detected. The skill correctly instructs users to manage sensitive configuration through environment variables (e.g.,
process.env.API_BASE_URL). - [DATA_EXFILTRATION]: No suspicious network requests or attempts to access sensitive local files (like SSH keys or AWS credentials) were identified. Network operations are confined to user-configured API endpoints.
- [REMOTE_CODE_EXECUTION]: The skill utilizes well-known, industry-standard packages and tools (e.g.,
@hey-api/openapi-ts,@tanstack/react-query). There are no patterns involving the execution of untrusted remote scripts or shell-piped downloads. - [COMMAND_EXECUTION]: No dangerous shell commands or privilege escalation attempts (such as sudo or chmod 777) were found. The skill does not use dynamic context injection in its documentation.
Audit Metadata