flags
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Overall] (SAFE): The skill is purely informational, providing instructions on how to modify specific files within a Next.js codebase to implement feature flags.
- [Prompt Injection] (SAFE): No malicious instructions or attempts to bypass agent safety guidelines were detected. The language is professional and focused on framework architecture.
- [Data Exposure & Exfiltration] (SAFE): No sensitive data, hardcoded credentials, or network-bound commands are present. The file paths mentioned (e.g.,
config-shared.ts,next-server.ts) are standard internal source files for the Next.js project. - [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not attempt to install third-party packages or execute remote scripts. It mentions build tools like Webpack and Rspack in a descriptive context only.
- [Obfuscation] (SAFE): No hidden or encoded content (Base64, zero-width characters, etc.) was found in the text or metadata.
Audit Metadata