The Agent Skills Directory

[SAFE] (SAFE): The skill contains only documentation and best practice guidelines. It does not include any executable scripts, binaries, or active logic that runs on the user's system.
[NO_CODE] (SAFE): Analysis of the 56 files confirms that all logic is contained within Markdown code blocks as examples for developers or AI agents. There is no automated execution of the provided snippets.
[Indirect Prompt Injection] (LOW): As a code-generation guide, the skill provides templates. While one rule (rules/rendering-hydration-no-flicker.md) suggests using dangerouslySetInnerHTML, it is a documented performance optimization for preventing layout flicker, and the provided script is a static, benign template for theme switching. The skill also proactively includes security guidance in 'rules/server-auth-actions.md', advising on the proper authentication of server-side mutations.
[EXTERNAL_DOWNLOADS] (LOW): The documentation references standard, well-known libraries such as swr, lru-cache, and better-all. These are used as examples of how to improve application performance and do not involve suspicious download-and-execute patterns.

vercel-react-best-practices