docs-react
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists exclusively of markdown documentation files and does not ship with any executable scripts or binaries.
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions for developers to download assets and install packages from official sources (e.g., cdn.img.ly, npmjs.com). These downloads are necessary for the documented SDK to function and originate from the authorized vendor.
- [PROMPT_INJECTION]: The skill includes a 'Version Notice' in SKILL.md with an instruction to the AI agent to prefer local documentation over pre-trained knowledge. This is a legitimate pattern for improving response accuracy via Retrieval-Augmented Generation (RAG) and does not attempt to bypass safety guidelines.
- [CREDENTIALS_UNSAFE]: Code snippets within the documentation use standard, non-sensitive placeholders such as 'YOUR_CESDK_LICENSE_KEY' or 'your-api-key', following secure coding examples.
Audit Metadata