cometchat-native-expo-patterns
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate integration instructions for CometChat in Expo environments.
- [CREDENTIALS_UNSAFE]: No hardcoded credentials detected. The skill uses safe placeholders for API keys and includes a specific warning against including server-side secrets like
REST_API_KEYin client-side configuration. - [EXTERNAL_DOWNLOADS]: Dependencies are installed via standard package managers (
npm,npx expo install) from well-known registries. Packages belong to the vendor (@cometchat) or are standard React Native/Expo community libraries. - [COMMAND_EXECUTION]: Shell commands are restricted to package installation (
npm install), Expo CLI operations (npx expo install,npx expo prebuild), and build processes (npx expo run:ios), which are typical for mobile development workflows.
Audit Metadata