vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- No Code (SAFE): The skill consists entirely of Markdown-based guidelines and metadata. No executable scripts (.sh, .py, .js) or system command patterns were detected.\n- Prompt Injection (SAFE): There are no instructions designed to override safety filters, bypass constraints, or reveal system prompts. The content is strictly instructional regarding coding best practices.\n- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, API keys, or access to sensitive local file paths (e.g., .ssh, .env) were found.\n- Remote Code Execution & Downloads (SAFE): The skill does not contain instructions to download or execute remote scripts or packages. References to external rule files are local to the skill package.\n- Obfuscation (SAFE): All content is provided in clear-text Markdown with no use of Base64, zero-width characters, or homoglyphs.
Audit Metadata