nextfriday-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- NO_CODE (SAFE): The skill is composed of markdown-based documentation and formatting rules. It does not include any scripts (Python, JS, Shell) or executable components that could perform malicious actions.
- DATA_EXPOSURE (SAFE): The content provides guidance on handling environment variables in Next.js (e.g., using the NEXT_PUBLIC_ prefix). These rules follow standard security practices to prevent secret leakage.
- EXTERNAL_DOWNLOADS (SAFE): No remote scripts, external packages, or untrusted URLs are present in the analyzed file. All references point to local documentation files.
- PROMPT_INJECTION (SAFE): The instructions are clearly defined as coding standards and do not contain any patterns attempting to override system prompts or bypass safety filters.
Audit Metadata