react-coding-standards
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local project commands such as
yarn lintandnpm run lintduring the preliminary phase described inSKILL.md. - [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface (Category 8). 1. Ingestion points: Analyzes user-provided source code files as described in
SKILL.md. 2. Boundary markers: Absent; no markers are used to isolate instructions from data. 3. Capability inventory: Performs command execution (yarn lint) and file-write operations (SKILL.md). 4. Sanitization: Absent; no sanitization or validation of the ingested code is specified.
Audit Metadata