Skills
skills/minimax-ai/skills/react-native-dev/Gen Agent Trust Hub

react-native-dev

Fail

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The file references/testing.md contains an instruction to install the Maestro testing tool using a shell script piped from a remote URL: curl -Ls "https://get.maestro.mobile.dev" | bash. This specific URL has been flagged by security scanners as malicious with a classification of 'Botnet'.
  • [EXTERNAL_DOWNLOADS]: The skill frequently instructs the user or agent to download and install third-party packages from public registries and repositories using npx expo install, npm install, and git clone. This introduces a large surface of external code dependencies.
  • [COMMAND_EXECUTION]: The skill provides numerous shell commands for project initialization, building (eas build), and deployment. These commands allow for broad system interaction and execution of arbitrary code if the environment is not restricted.
Recommendations
  • AI detected serious security threats
  • Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
Mar 26, 2026, 12:49 PM