react-refactor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- PROMPT_INJECTION (SAFE): The content is purely instructional and aimed at improving React code architecture. No attempts to override agent behavior, bypass safety filters, or extract system prompts were detected.
- DATA_EXFILTRATION (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network operations are present. Code examples use local or placeholder API endpoints (e.g., /api/projects) consistent with React development documentation.
- OBFUSCATION (SAFE): No Base64 encoding, zero-width characters, homoglyphs, or other obfuscation techniques were identified in the text or code snippets.
- REMOTE_CODE_EXECUTION (SAFE): No remote script execution patterns (e.g., curl | bash) or dynamic code execution (eval, exec) are present in the documentation or the described workflows.
- EXTERNAL_DOWNLOADS (SAFE): External links provided in the metadata and rules (react.dev, patterns.dev, kentcdodds.com) are well-known, reputable educational resources for React developers.
- INDIRECT_PROMPT_INJECTION (SAFE): The skill is a static knowledge base. It does not ingest untrusted external data at runtime or provide capabilities that could be exploited via poisoned data inputs.
Audit Metadata