react-spa
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill acts as a configuration and architectural guide for scaffolding React applications. No malicious command execution, data exfiltration, or prompt injection patterns were detected.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill suggests the use of standard web development dependencies such as React, Vite, and Tailwind CSS. These are trusted, widely-used packages from the NPM registry and their inclusion aligns with the primary purpose of the skill.
- [INDIRECT_PROMPT_INJECTION] (SAFE): While the skill accepts user input for project names and descriptions, it does so within a structured developer workflow. There is no automated processing of untrusted external data that would lead to injection vulnerabilities.
Audit Metadata