frontend-developer
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a legitimate technical knowledge base for frontend development implementation. It follows a clear architectural hierarchy (Level 3: How) and delegates complex framework-specific tasks to specialized expert skills.
- [COMMAND_EXECUTION]: Instructions throughout the skill contain numerous examples of standard developer CLI commands (e.g., npm install, npx playwright, npx lighthouse). These are strictly instructional and intended for the user's development environment, posing no autonomous security risk.
- [DATA_EXFILTRATION]: Patterns provided for API integration and state management use industry-standard practices for handling authentication tokens and sensitive data (e.g., Bearer tokens in headers, localStorage for session persistence), with no signs of data harvesting or unauthorized network transmission.
- [REMOTE_CODE_EXECUTION]: Remote code patterns found in the documentation (such as fetching data or lazy-loading components) are standard frontend optimizations. There is no evidence of the skill attempting to download and execute arbitrary scripts on the host system.
Audit Metadata