one-component-per-file-best-practice
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to assist developers with project organization and code quality by refactoring React and Vue components into separate files.
- [COMMAND_EXECUTION]: The workflow involves reading and writing to the local file system (identifying components and creating new files). These operations are standard for development tools and are contained within the scope of the user's project directory.
- [DATA_EXPOSURE]: The skill processes source code files. There is no evidence of data being transmitted to external servers or accessed outside of the necessary project context.
- [PROMPT_INJECTION]: No attempts to override agent safety guidelines or hide malicious instructions in metadata were detected.
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data (source code files). While this is a theoretical attack surface, the skill's logic is focused on structural code patterns (exports and component definitions) rather than executing the content, making the risk of exploitation negligible.
Audit Metadata