Skills
skills/vainjs/skills/react/Gen Agent Trust Hub

react

Pass

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: LOW
Full Analysis
  • [Prompt Injection] (SAFE): The instructions are strictly focused on establishing React/TypeScript coding standards and do not contain attempts to override agent safety filters or system instructions.
  • [Data Exposure & Exfiltration] (SAFE): No access to sensitive local files or hardcoded credentials was found. The skill does not perform any network operations.
  • [Remote Code Execution] (SAFE): The skill does not download or execute remote scripts, nor does it include any package installation commands.
  • [Indirect Prompt Injection] (INFO): The skill searches for and reads project configuration files (ESLint/package.json). This is a standard operation for a code-review tool and poses no significant risk as it only influences the agent's formatting and style output.
  • Ingestion points: .eslintrc., eslint.config., package.json
  • Boundary markers: Absent
  • Capability inventory: Local code formatting and reasoning
  • Sanitization: Not applicable for formatting instructions
Audit Metadata
Risk Level
LOW
Analyzed
Feb 16, 2026, 01:06 PM