nodejs-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues detected in the skill contents.
- [PROMPT_INJECTION] (SAFE): The instructions focus on guiding the agent's decision-making process for technical advice. There are no attempts to bypass safety filters or override system instructions.
- [DATA_EXFILTRATION] (SAFE): The skill does not contain any network operations or hardcoded credentials. It specifically instructs the user/agent to use environment variables for secrets and to avoid hardcoding them.
- [REMOTE_CODE_EXECUTION] (SAFE): There are no commands or patterns that download or execute remote scripts. References to frameworks like Fastify or Hono are purely for documentation and comparison purposes.
- [NO_CODE] (SAFE): The skill is entirely composed of Markdown documentation and does not include any accompanying scripts or executable files.
Audit Metadata