vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The analyzed skill consists entirely of documentation (Markdown) and metadata (JSON) defining React performance best practices. No malicious code, obfuscation, or persistence mechanisms were found.
- [EXTERNAL_DOWNLOADS]: The documentation references several external libraries and resources, including
better-all,lru-cache,on-finished, andswr. These are well-known, established libraries within the React and Node.js ecosystems. The source forbetter-allis a Vercel engineer (shuding), consistent with the skill's attribution to Vercel Engineering. - [COMMAND_EXECUTION]: While the README mentions pnpm scripts for building and validating the documentation, these scripts are standard development tools and no actual executable scripts or malicious shell commands are present in the provided files.
Audit Metadata