vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): The skill contains no executable code (e.g., .py, .js, .sh files) and consists entirely of Markdown documentation, eliminating direct execution-based attack vectors.
- [SAFE] (SAFE): Includes critical security guidance for Next.js developers, specifically advising on the authentication and authorization of Server Actions to prevent unauthorized data mutations.
- [SAFE] (SAFE): All external library references (e.g., SWR, Zod, LRU-Cache) and URLs point to reputable packages and trusted sources associated with the Vercel ecosystem.
- [SAFE] (SAFE): No patterns of prompt injection, data exfiltration, obfuscation, or persistence mechanisms were detected in the documentation or rule examples.
Audit Metadata