react-development
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides a PowerShell script 'scripts/component-generator.ps1' to generate React component files. The script uses 'New-Item' and 'Set-Content' to modify the local file system. It includes regex validation for component names to prevent malicious input from affecting the generated code structure.
- [SAFE]: Documentation in 'SKILL.md' exposes a local directory path 'C:/Users/LOQ/.agents/skills/' which reveals a local system username. This is considered a low-severity information disclosure.
Audit Metadata