web-frameworks
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill consists primarily of markdown documentation and reference guides for standard web development frameworks.
- [COMMAND_EXECUTION] (SAFE): The documentation provides examples of standard CLI commands such as
npx create-next-appandnpm install. These are expected for the framework's use case and do not involve unauthorized or hidden execution logic. - [EXTERNAL_DOWNLOADS] (SAFE): The packages referenced (e.g.,
remixicon,next,turbo) are standard libraries from the official npm registry. No untrusted or malicious sources were identified. - [DATA_EXFILTRATION] (SAFE): The documentation regarding Turborepo caching correctly advises the use of environment variables and secrets for sensitive tokens (e.g.,
TURBO_TOKEN), following security best practices rather than hardcoding credentials. - [NO_CODE] (SAFE): While the skill mentions utility Python scripts (
nextjs-init.py,turborepo-migrate.py), these files were not included in the provided analysis set. The available content is instructional and poses no threat.
Audit Metadata