tanstack-router
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- PROMPT_INJECTION (SAFE): No instructions found that attempt to override system prompts or bypass safety filters. All content is focused on technical documentation.
- DATA_EXFILTRATION (SAFE): No network operations to external domains or sensitive file system access detected. API calls shown are illustrative of local application logic.
- INDIRECT_PROMPT_INJECTION (SAFE): The skill provides patterns for handling external input (URL/Search parameters). It correctly demonstrates the use of Zod for schema validation, which mitigates injection risks at the application level.
- REMOTE_CODE_EXECUTION (SAFE): No remote script downloads or piped command executions. Imports are from standard, well-known libraries (@tanstack/react-router, react, zod).
- OBFUSCATION (SAFE): No encoded strings, zero-width characters, or hidden payloads were identified.
Audit Metadata