nextjs-architecture
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No obfuscation (Base64, hex, homoglyphs, or zero-width characters) was detected in any of the analyzed files.
- [SAFE]: No sensitive data exposure or exfiltration patterns were identified. The network references are limited to official documentation URLs on
nextjs.org. - [SAFE]: No remote code execution (RCE) or unverifiable dependencies were found. The skill uses standard local shell commands (
rg,find,test) purely for project discovery and validation within the local environment. - [SAFE]: No privilege escalation or persistence mechanisms are present. The skill operates within the scope of code analysis and architectural guidance.
- [SAFE]: The instructions for Server Actions and Route Handlers specifically emphasize security best practices, such as re-authorizing inside actions and minimizing return values to prevent data leaks.
- [SAFE]: All URLs provided in the documentation map lead to official Next.js documentation at
nextjs.organd contain no malicious redirection.
Audit Metadata