electric-yjs
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill references official Node.js packages from the vendor (@electric-sql/y-electric) and well-known libraries (yjs) for its core functionality.
- [SAFE]: Data synchronization is handled via relative API endpoints (/api/yjs/update, /api/yjs/doc-shape), which is standard for web application development and does not involve unauthorized external network communication.
- [SAFE]: The SQL scripts and TypeScript snippets follow established patterns for managing Yjs binary updates (BYTEA) and persistence without introducing privilege escalation or command execution risks.
- [SAFE]: No hardcoded credentials, obfuscation, or malicious prompt injection patterns were detected in the skill content or metadata.
Audit Metadata