threejs-r3f
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a legitimate technical guide for building 3D web experiences using the Three.js and React Three Fiber (R3F) ecosystem. All provided instructions and references align with industry best practices for performance and development.
- [COMMAND_EXECUTION]: The skill contains standard development commands for scaffolding projects (
bun create vite), installing dependencies (bun add), and transforming 3D assets (npx gltfjsx). These commands are limited to typical local development workflows. - [EXTERNAL_DOWNLOADS]: The skill references well-known external resources, including official documentation for Three.js, R3F, and Rapier. It correctly notes that
useGLTFutilizes a standard CDN for Draco decoders, which is a necessary and expected function for loading compressed 3D models. - [DATA_EXFILTRATION]: No patterns related to sensitive file access, credential harvesting, or unauthorized network operations were detected. All network-related activities involve standard asset loading (textures, models).
- [PROMPT_INJECTION]: No attempts to override agent behavior, bypass safety guidelines, or extract system prompts were found in the instructions or metadata.
Audit Metadata