react-native-best-practices
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a documentation and best practices repository for React Native development. A thorough analysis of all instruction files and scripts revealed no evidence of prompt injection, data exfiltration, obfuscation, or other malicious behavior.
- [EXTERNAL_DOWNLOADS]: The documentation references several well-known and trusted development tools and official resources, including Expo Atlas, Flashlight, source-map-explorer, and official Android developer documentation. These references are used for legitimate performance measurement and analysis tasks.
- [COMMAND_EXECUTION]: The skill provides standard shell commands for building applications (e.g.,
gradlew,xcodebuild) and analyzing JavaScript bundles. These are routine development operations and are accompanied by explicit security warnings advising users to review commands before execution and to use version-pinned tooling from trusted sources. - [REMOTE_CODE_EXECUTION]: The skill includes instructions for implementing on-demand bundle loading using Re.Pack. While this involves dynamic code loading, it is a documented architectural pattern for large-scale React Native apps. The guide includes mandatory security guardrails, such as serving chunks only from first-party HTTPS origins and resolving IDs through fixed manifests, to mitigate risks.
Audit Metadata