vue-start
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references standard Node.js packages within the TanStack ecosystem (@tanstack/vue-start, @tanstack/vue-router) and official Vite plugins. These dependencies originate from the recognized vendor and are routine for the described framework setup.
- [COMMAND_EXECUTION]: The documentation includes a standard
package.jsonconfiguration with a start command (node .output/server/index.mjs). This is the default deployment pattern for the framework and does not involve any unauthorized or malicious execution logic. - [SAFE]: The skill demonstrates secure coding practices by explicitly recommending the use of
inputValidatorfor server functions (createServerFn). This pattern ensures that data ingested from the client or external sources is validated before being processed in server-side handlers.
Audit Metadata