react-dev
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill consists exclusively of markdown documentation and coding conventions. No executable scripts, shell commands, or obfuscated payloads were identified across the provided files.
- [EXTERNAL_DOWNLOADS]: Guidelines reference several well-known and trusted libraries including TanStack Query, Zustand, Zod, and react-error-boundary. It also mentions internal vendor packages under the '@sellernote' scope and services like Sentry, which are legitimate within the author's context.
- [DATA_EXFILTRATION]: No patterns associated with data exfiltration were found. The conventions specifically mandate the masking of sensitive information such as passwords and PII in logs, and discourage storing authentication tokens in browser storage.
- [PROMPT_INJECTION]: The instructions are purely focused on providing technical guidance for React development and do not contain any bypass markers or attempts to override agent behavior.
Audit Metadata