validation
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, command execution, or unauthorized network operations were detected. The skill consists entirely of TypeScript documentation and code templates.- [DATA_EXPOSURE]: While the skill includes code for handling sensitive environment variables like 'DATABASE_URL' and 'API_KEY', these are provided as schema validation patterns only. No hardcoded credentials or secrets are present in the files.- [INDIRECT_PROMPT_INJECTION]: The skill targets the processing of untrusted data (API responses and form inputs). However, the primary purpose of the provided code is to mitigate injection risks through strict runtime schema validation and type checking, which is a recognized security best practice.- [EXTERNAL_DOWNLOADS]: The skill references industry-standard, well-known libraries such as 'zod' and 'react-hook-form'. These are established tools and do not represent a security risk in this context.
Audit Metadata