webflow-local-dev-loop
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [SAFE]: No security issues detected.
- [EXTERNAL_DOWNLOADS]: The skill references standard Node.js packages such as webflow-api, express, and vitest from public registries, as well as the well-known ngrok service for webhook tunneling.
- [DATA_EXFILTRATION]: The instructions implement secure secret management by advising the use of git-ignored ".env.local" files for API tokens and webhook secrets, preventing accidental credential exposure.
- [COMMAND_EXECUTION]: The workflow utilizes standard developer CLI tools, including npm, pnpm, npx, ngrok, and curl, for project initialization and local testing purposes.
Audit Metadata