Skills
skills/involvex/aetheris/react-best-practices/Gen Agent Trust Hub

react-best-practices

Pass

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The README.md file documents several repository management commands including pnpm install, pnpm build, and pnpm validate.
  • [COMMAND_EXECUTION]: The guidelines for SVG optimization in rules/rendering-svg-precision.md suggest using the npx svgo utility to reduce file size.
  • [EXTERNAL_DOWNLOADS]: The skill references external documentation and software repositories from trusted and well-known sources, including the better-all and lru-cache projects on GitHub and official SWR and Next.js documentation.
  • [PROMPT_INJECTION]: This skill possesses an attack surface for indirect prompt injection as it is intended to process untrusted user-provided source code for refactoring (Ingestion point). The instructions do not specify the use of boundary markers for external data (Boundary markers). The agent's capabilities include code generation and refactoring (Capability inventory). No explicit sanitization or filtering instructions for code content are provided in the documentation (Sanitization).
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 26, 2026, 04:44 PM