moai-library-nextra
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): Includes code snippets for build optimization scripts using
execSyncfor standard tasks such as clearing build caches (rm -rf .next) and compressing assets. These are presented as educational templates for developer use and are not instructions for the agent to execute arbitrary commands. - DATA_EXPOSURE (SAFE): No hardcoded credentials, API keys, or sensitive file paths were detected. Documentation for CI/CD correctly references the use of secrets (e.g.,
${{ secrets.VERCEL_TOKEN }}) rather than exposing actual values. - DYNAMIC_EXECUTION (SAFE): Uses React's
dangerouslySetInnerHTMLin architectural patterns for rendering documentation content. In the context of a static site generator like Nextra, this is the standard mechanism for rendering processed Markdown/MDX content. - EXTERNAL_DOWNLOADS (LOW): References standard initialization and deployment tools including
npx create-nextra-app,vercel, andnetlify-cli. These are from trusted sources within the documentation development ecosystem. - PROMPT_INJECTION (SAFE): No instructions attempting to override agent behavior or bypass safety filters were found in the skill metadata or body.
Audit Metadata