vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns, prompt injections, or unauthorized data access were detected. The skill consists entirely of technical documentation and code examples for performance optimization.
- [EXTERNAL_DOWNLOADS] (LOW): The rules mention several standard libraries (e.g.,
swr,lucide-react,lru-cache,better-all,zod). These are standard ecosystem dependencies and are mentioned for implementation guidance rather than malicious execution. - [COMMAND_EXECUTION] (SAFE): One rule mentions an
svgoCLI command for SVG optimization. This is a standard utility recommendation and does not constitute a security risk. - [DATA_EXFILTRATION] (SAFE): The skill discusses performance-oriented usage of
localStorageandcookiesbut does not contain any logic for exfiltrating this data to external servers. - [PROMPT_INJECTION] (SAFE): The instructions are strictly focused on code review and generation based on technical rules. There are no attempts to override agent behavior or bypass safety constraints.
Audit Metadata