react-coding-standards
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the execution of local project linting scripts such as
yarn lintornpm run lintto identify and fix style violations. This behavior is consistent with the skill's primary purpose. - [PROMPT_INJECTION]: The skill is subject to indirect prompt injection (Category 8) because it analyzes external code and configuration files (e.g.,
eslint.config.js). [Ingestion points]: Local source code and project configuration files. [Boundary markers]: Not provided; the skill does not define specific delimiters to isolate code content. [Capability inventory]: Execution of shell commands and file modification. [Sanitization]: Not performed on the analyzed content. - [SAFE]: Referenced external resources and packages, such as @lichens-innovation/ts-common and @uidotdev/usehooks, are either vendor-owned or well-known community libraries.
Audit Metadata