react-native-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [PROMPT_INJECTION] (SAFE): No instructions found that attempt to override agent behavior, bypass safety constraints, or reveal system prompts.
- [DATA_EXFILTRATION] (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network operations were detected. The commands provided target local build outputs.
- [REMOTE_CODE_EXECUTION] (SAFE): The provided shell commands use standard 'npx' calls for established tools like 'react-native' and 'source-map-explorer'. No patterns of downloading and piping remote scripts (e.g., curl | bash) are present.
- [OBFUSCATION] (SAFE): All content is in clear, readable Markdown and Shell script formats. No Base64, zero-width characters, or homoglyphs were found.
- [COMMAND_EXECUTION] (LOW): Contains standard development commands for bundling and profiling. These are expected for a performance optimization skill and do not pose a risk in a typical development environment.
- [INDIRECT_PROMPT_INJECTION] (INFO): While the skill guides the agent in analyzing external code/logs, it does not include unsafe interpolation of untrusted data into prompt templates.
Audit Metadata