build-tooling
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a documentation and configuration guide for the Vite build tool. It contains standard usage patterns for development servers, build pipelines, and asset handling.
- [EXTERNAL_DOWNLOADS]: The skill references established, well-known packages from the NPM registry, including
vite,lodash,axios, and official plugins like@vitejs/plugin-legacy. These are industry-standard dependencies and do not constitute a security risk in this context. - [COMMAND_EXECUTION]: Includes common development and build commands (e.g.,
vite build,npx vite-bundle-visualizer). These operations are consistent with the skill's primary purpose of managing build tooling. - [CREDENTIALS_UNSAFE]: Correctly demonstrates the use of environment variables (
.env) using non-sensitive placeholders likeexample.comandlocalhost. No hardcoded credentials or sensitive file paths were detected.
Audit Metadata