tresjs-core-skilld
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified during the analysis of the skill. All instructions are focused on technical implementation and optimization of Three.js scenes using Vue components.
- [COMMAND_EXECUTION]: The skill mentions standard development commands such as
npm install,pnpm build, andnpx nuxi init. These are common in the Vue and Nuxt ecosystem for project setup and deployment and do not represent a risk in this context. - [EXTERNAL_DOWNLOADS]: The documentation references loading 3D assets (GLB files, textures) and helper scripts (Draco decoders) from well-known and trusted sources, including Google's GStatic and official GitHub repositories. These operations are essential for the primary functionality of a 3D engine.
- [PROMPT_INJECTION]: No override instructions, safety bypasses, or jailbreak patterns were detected in the skill instructions or metadata.
- [DATA_EXFILTRATION]: There is no evidence of unauthorized network requests or attempts to access sensitive system files (e.g., credentials, environment variables).
Audit Metadata