juicebox-local-dev-loop
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No prompt injection or behavior override patterns were detected. The instructions follow standard software development practices.
- [SAFE]: Data handling is secure. The skill uses a placeholder sandbox API key (
jb_test_xxxxxxxxxxxx) and recommends using.env.developmentfor local configuration, which is a standard security best practice to prevent credential leakage. - [SAFE]: No remote code execution or suspicious download patterns were identified. Dependencies such as
@juicebox/sdk,nodemon, andvitestare well-known development tools. - [SAFE]: There are no signs of obfuscation, persistence mechanisms, or privilege escalation attempts. The tool usage is limited to standard file operations and development commands.
Audit Metadata