tanstack-router-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of markdown documentation and code examples for developers. It does not include any executable scripts, binaries, or configuration files that would be executed by the agent on a host system.
- [PROMPT_INJECTION]: No patterns associated with prompt injection, such as instruction overrides, safety filter bypasses, or system prompt extraction, were detected.
- [DATA_EXFILTRATION]: No sensitive file paths, hardcoded credentials, or unauthorized network operations were identified. Code examples use mock data-fetching functions.
- [REMOTE_CODE_EXECUTION]: There are no patterns involving remote script execution, such as 'curl | bash' or dynamic evaluation of untrusted strings.
- [EXTERNAL_DOWNLOADS]: The skill does not perform any external downloads. It references well-known and trusted libraries from the React ecosystem (e.g., TanStack, Zod, Valibot) within its documentation and code snippets.
- [SEARCH_VALIDATION]: The skill proactively addresses security by providing a specific rule ('search-validation') that teaches developers how to sanitize and validate user-controlled search parameters from URLs to prevent runtime errors or potential exploits.
Audit Metadata