react-server-components-framework
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No malicious patterns, obfuscation, or unauthorized access vectors were detected across the 9 files.
- Data Exposure & Exfiltration (SAFE): Code examples correctly demonstrate keeping sensitive credentials like
SECRET_API_KEYon the server. There are no hardcoded secrets or suspicious network calls. - Unverifiable Dependencies (SAFE): The skill references standard industry libraries such as
zodfor schema validation andprismafor database interactions, which are used in a benign context. - Indirect Prompt Injection (LOW): The skill includes patterns for ingesting user data via forms and API routes. However, it mitigates this risk by providing a mandatory checklist that includes requirements for input validation, sanitization, and authorization checks.
Audit Metadata