vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of Markdown-based documentation and architectural rules. It does not ship with any executable scripts (Python, JavaScript, or Shell) or automation logic that could perform unauthorized operations on a system.
- [EXTERNAL_DOWNLOADS]: The content references industry-standard and reputable third-party libraries such as
swr,lru-cache, andbetter-all. These references are provided for guidance and point to well-known open-source projects or official Vercel documentation. - [SAFE]: The skill actively promotes security by including explicit rules for authenticating Server Actions (Category 3.1). It correctly identifies that Server Actions are public endpoints and must be secured similarly to API routes, which is a key security best practice in the Next.js ecosystem.
Audit Metadata