qbcore-development
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Category 8 (SAFE): The skill provides templates for handling external input via game commands and NUI (UI) callbacks. It explicitly promotes security best practices by instructing developers to validate all data on the server-side before processing (e.g., checking player permissions and funds before granting items).
- Category 2 (SAFE): No hardcoded credentials or malicious network operations were detected. The documentation explicitly advises users to keep sensitive information like Webhooks and API keys in server-side configuration files to prevent exposure to the client.
- Category 4 (SAFE): The skill references standard community-standard resources (qb-core, oxmysql) and does not include any patterns for downloading or executing remote code at runtime.
- Category 1 (SAFE): No prompt injection or behavior override patterns were found in the instructions or metadata.
Audit Metadata