react-audit-grep-patterns
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill provides a library of grep, find, and cat commands to perform static analysis of the local React codebase. These patterns are designed to identify deprecated APIs and unsafe coding practices without performing dangerous file modifications or accessing sensitive system directories.- [COMMAND_EXECUTION]: The skill uses inline Python and Node.js execution to parse the project's 'package.json' and verify local package versions. These operations are performed on local data using hardcoded logic and do not execute untrusted input.- [EXTERNAL_DOWNLOADS]: The skill includes commands to fetch peer dependency information from the official npm registry using 'npm info'. This is a standard development operation used to ensure environment compatibility during a migration audit.- [DATA_EXPOSURE]: The skill reads the 'package.json' file to identify dependencies and version constraints. This access is limited to project metadata required for the audit and does not involve exfiltration of sensitive information.
Audit Metadata