nextjs-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION] (SAFE): The skill content is purely instructional and lacks any attempts to bypass safety filters, override agent behavior, or extract system prompts.
- [DATA_EXFILTRATION] (SAFE): No sensitive file paths, hardcoded credentials, or unauthorized network operations were detected. All external links point to official Next.js documentation.
- [REMOTE_CODE_EXECUTION] (SAFE): There are no patterns involving remote script execution or untrusted package installations.
- [COMMAND_EXECUTION] (SAFE): While the skill mentions the existence of automation scripts in a scripts/ directory, no actual code was provided for analysis, and the described purpose (detecting anti-patterns) is benign. No privilege escalation or persistence mechanisms are present.
Audit Metadata