auth0-react-native
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions designed to override agent behavior, bypass safety guardrails, or extract system prompts were detected.
- Data Exposure & Exfiltration (SAFE): The skill utilizes environment variable placeholders for configuration and does not contain hardcoded credentials or unauthorized data exfiltration logic.
- Unverifiable Dependencies & Remote Code Execution (SAFE): Dependency management follows standard practices using the well-known 'react-native-auth0' package from the npm registry. No remote script piping (e.g., curl|bash) was found.
- Privilege Escalation (SAFE): The skill uses standard build commands like 'pod install' and 'npx expo install' which are routine for mobile development and do not attempt to escalate system privileges.
- Indirect Prompt Injection (SAFE): While the skill involves processing external user data from Auth0, it provides a standard implementation using the official SDK, which incorporates sufficient isolation within the React Native framework.
Audit Metadata