react-allauth
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Clones the official django-allauth repository from GitHub to source authentication modules for project integration.
- [EXTERNAL_DOWNLOADS]: Installs the @github/webauthn-json dependency, which is provided by a trusted organization.
- [COMMAND_EXECUTION]: Uses shell commands to restructure and integrate the cloned source code into the local frontend directory.
- [COMMAND_EXECUTION]: Executes automated browser tests via a Python script, involving the management of local development servers.
- [PROMPT_INJECTION]: Identifies an indirect prompt injection surface due to external code ingestion. 1. Ingestion points: SKILL.md Step 1 clones the django-allauth repository. 2. Boundary markers: Absent. 3. Capability inventory: SKILL.md Step 11 contains multiple subprocess executions for server management and testing. 4. Sanitization: Absent.
Audit Metadata