vue-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a guide for building Vue.js applications using Composition API and TypeScript. It adheres to standard instructional patterns without attempting to bypass safety protocols.
- [PROMPT_INJECTION]: No patterns of instruction override, jailbreak attempts, or safety filter bypasses were detected. The instructions are focused on technical workflows for Vue development.
- [DATA_EXPOSURE_AND_EXFILTRATION]: No sensitive file access or hardcoded credentials were found. Code examples use standard API patterns (e.g.,
fetchandaxios) for illustrative purposes without exfiltration risk. - [EXTERNAL_DOWNLOADS]: The documentation references well-known and trusted packages in the Vue ecosystem, such as Pinia, VueUse, and GSAP. No malicious download or execution scripts are present.
- [INDIRECT_PROMPT_INJECTION]: The skill explicitly addresses security risks associated with untrusted data. Specifically, in
references/sfc.md, it warns against usingv-htmlwith untrusted content and recommends usingDOMPurifyfor sanitization, which is a defensive best practice.
Audit Metadata