react-data-provider
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions do not contain any prompt injection, role-play attempts, or safety filter bypass markers. It uses standard instructional language to define development conventions.
- [SAFE]: API client implementation follows security best practices by utilizing environment variables for configuration and managing access tokens in memory-scoped variables rather than persistent browser storage.
- [SAFE]: The conventions include mandatory masking for sensitive data in logs (passwords, emails, tokens) and enforce the use of safe storage wrappers to prevent application crashes and data leaks.
- [SAFE]: All referenced external dependencies are well-known, standard libraries in the React ecosystem (e.g., TanStack Query, Zustand, React Router, Zod) and are used for their intended purposes.
- [SAFE]: Authentication flows are designed securely, utilizing HTTP-only cookies for refresh tokens and preventing infinite loops during token refresh failures.
Audit Metadata