react-composition-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No security issues detected. The skill consists exclusively of markdown documentation and instructional code snippets for React developers.
- Prompt Injection (SAFE): No instructions found that attempt to bypass safety filters or override core agent behavior. The use of 'Important' is restricted to technical best practices.
- Data Exfiltration (SAFE): No network calls (curl, fetch), hardcoded credentials, or sensitive file path access detected.
- Obfuscation (SAFE): No Base64-encoded strings, zero-width characters, or homoglyphs identified in any of the files.
- Remote Code Execution (SAFE): No patterns of downloading and executing remote scripts (e.g., pipe to bash). The installation command in the README is standard for the skills ecosystem.
- Privilege Escalation / Persistence (SAFE): No attempts to modify system files, install services, or gain administrative rights.
Audit Metadata