react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill requests permission for the
BashandWritetools. These are appropriate for a tool designed to audit codebases and apply performance fixes. No hardcoded or suspicious command strings were identified in the content. - [EXTERNAL_DOWNLOADS] (SAFE): The skill references external resources such as the 'better-all' library and various technical articles. These are documented as recommendations for the developer and are not automatically downloaded or executed by the agent at runtime.
- [DATA_EXFILTRATION] (SAFE): No attempts to access sensitive system files (e.g., credentials, SSH keys) or exfiltrate data to remote servers were found. The provided Python script is a local utility for merging documentation files.
- [PROMPT_INJECTION] (SAFE): The instructional content is strictly technical and does not contain any patterns intended to override agent behavior, bypass safety filters, or extract system prompts.
Audit Metadata