typescript-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a style guide and instruction set for the agent to produce high-quality TypeScript code. It does not contain any instructions to bypass safety filters or perform unauthorized operations.
- [DATA_EXPOSURE]: The skill includes examples of handling environment variables and secrets (like
API_KEY). These are used correctly in the context of demonstrating how to validate configuration at startup using schemas, which is a recognized security best practice. No hardcoded credentials or exfiltration patterns were detected. - [EXTERNAL_DOWNLOADS]: The skill references established and well-known libraries such as
zod,type-fest, anddebug. These references are standard for the described purpose of TypeScript development and do not involve untrusted sources or remote execution patterns. - [COMMAND_EXECUTION]: No commands for system modification, privilege escalation, or persistence were found. The instructions focus entirely on source code patterns and application logic.
Audit Metadata